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GONG 
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Commissioner for Patents 
P.O. Box 1450 

Alexandria, Virginia 22313-150 
Dear Sir or Madam: 

Applicant submits this Petition to the Director of the USPTO under 37 C.F.R. §1 .1 81 seeking 
reconstruction of the above-identified application, withdrawal of a holding of abandonment 
improperly maiied by the Office on June 8, 2005, and subsequent substantive examination of the 
Appeal Brief that Applicant timely filed with the USPTO ("Office") on March 25, 2002, based on the 
following remarks. 

Applicant will pay required petition fee specified in 37 C.F.R, §1.1 7(f) for a question not 
specifically provided for under 37 C.F.R. §1.182 in the amount of $400.00 by an EFT account at the 
time of filing of this petition. Although Applicant does not believe that any additional fees are due 
with respect to the consideration of this petition, please debit any such additional fees from Deposit 
Account No, 50-1419. 



) Group Art Unit Unknown 
) Examiner: Unknown 



) 
) 
) 




AjJRegyfigtfor Recojasfeugtign: 

Initially, Applicant respectfully requests reconstruction of the above-identified application 
under 37 C.F.R. §1 .251 beginning with the Appeal Brief timely filed by Applicant on March 25, 2002 
(an entry for the Appeal Brief appears at "Paper No. 29" in the List of Contents of the file wrapper) 
because the Office appears to be missing this Appeal Brief in addition to many papers that should 
have been recorded by the Office after "Paper No. 29" ^before "Paper No. 30" (the Request for 
Access of the Office's record of the file wrapper filed on December 1 6, 201 0). Applicant notes that it 
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appears the Office has never notified Applicant of the Office's inability to locate this portion of the file 
wrapper nor set a time period within which Applicant needed to compiy with provisions of such a 
notice. 

For reference, Applicant wili now provide a timeline of all papers mailed or filed in the above- 
identified application after the Notice of Appeal timely filed by Applicant on January 24, 2002, and for 
which Applicant respectfully requests the Office uses in the reconstruction of the above-identified 
application: 

1) March 25, 2002 - Appeal Brief (see Exhibits A and B, paper no. 1 ) 

2) November 21, 2003 - Change of Customer Number and Correspondence Address 
and Revocation of Power of Attorney and Grant of New Power of Attorney (see Exhibits A and B, 
paper no. 2). 

3) December 12, 2003 - Duplicate Change of Customer Number and Correspondence 
Address and Revocation of Power of Attorney and Grant of New Power of Attorney (see Exhibits A 
and B, paper no.3). 

4) October 6, 2004 - Status inquiry (see Exhibits A and B, paper no. 4). 

5) November 22, 2004 - Request for File Search (see Exhibits A and B, paper no. 5). 

6) June 8, 20Q5 - Notice of Abandonment for an alleged failure to reply to an Office 
letter mailed on September 24, 2001 (see Exhibits A and B, paper no. 6). 

7) November 3, 2006 - Request to Withdraw Holding of Abandonment and Letter 
Submitting Duplicate Copy of File Wrapper (see Exhibits A and B, paper no. 7). 

8) November 3, 2008 - Information Disclosure Statement (see Exhibits A and B, paper 

no. 8). 

9) June 16, 2009 - Revocation of Power of Attorney With New Power of Attorney and 
Change of Correspondence Address (see Exhibits A and B, paper no. 9). 

10) July 13, 2009 - Notice of Acceptance of Power of Attorney (see Exhibits A and B, 

paper no. 10) 

11) July 13, 2009 - Notice Regarding Change of Power of Attorney (see Exhibits A and 
B, paper no. 11) . 

12) December 16, 2010 - Request for Access (see Exhibits A and B, paper no. 12) 

As provided and shown in Exhibit A, ail papers filed by Applicant include an Office stamp or 
receipt acknowledging receipt by the Office of such papers. 

In compliance with 37 C.F.R. §1.251 (a)(1), Applicant has attached a copy of Applicant's 
record of ail correspondence between the Office and Applicant for the above-identified application 
(Exhibit A), beginning with the Appeal Brief timely filed by Applicant on March 25, 2002, along with a 
list of the correspondence (Exhibit B). Applicant is not attaching a copy of Applicant's record of 
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correspondence between the Office and Applicant for papers malted or filed before the Appeal Brief 
timely filed by Applicant on March 25, 2002 because Applicant's record of such papers appears to be 
the same as the Office's record of such papers. Furthermore, the below signature of Applicant's 
representative, Jonathan A. Szurnny, attests that the above-mentioned copy of Applicant's record is 
a complete and accurate copy of Applicant's record of ail correspondence between the Office and 
Applicant for the above-identified application during this time period, and that Applicant is not aware 
of any correspondence between the Office and Applicant for the above-identified application during 
this time period that is not among Applicant's records. 

BjRggugjtfor WithdrawajofH^^ 

As indicated above, a "Notice of Abandonment" was mailed by the Office on June 8, 2005 
(see Exhibit B, paper no. 8). Before discussing why this holding of abandonment was improper, 
Applicant notes that the Notice of Abandonment was not maiied to the then-eyrTeni Power of 
Attorney (see Exhibits A and B, paper no. 3) with a correspondence address of; 

Finnegan, Henderson, Farabow, Garrett & Dunner, L.L.P. 

1300 \ Street, N.W. 

Washington, D.C. 20005-3315 
Instead, the Notice of Abandonment was mailed to a then-old Power of Attorney with a 
correspondence address of: 

McDermott Will & Emery LLP 

600 13 th Street, N.W. 

Washington, D.C. 20005-3096 
As noted in the "Request to Withdraw Holding of Abandonment" filed by Applicant on 
November 3, 2006 (see Exhibits A and B, paper no. 7), an "Examiner Callahan" of the Office (this 
might have been referring to the "Examiner Caldwell" that signed the Notice of Abandonment) 
indicated to Applicant (exact date unknown) that the above-identified application was abandoned 
sometime in June of 2005. Applicant and Examiner Caldweil did not appear to have knowledge of 
an exact date of abandonment because, as mentioned above, the Notice of Abandonment was 
mailed to an incorrect correspondence address and because the above-identified application was 
"lost". Many of the matters discussed herein (such as the Office mailing the Notice of Abandonment 
to the incorrect address) are compounded by the fact that the Office "lost" the above-identified 
application for a large period of time and only "found" the application on June 2, 2009 (as indicated 
on private PAIR'S Transaction History tab), albeit with many papers still missing from the application. 

in any event, and upon orally learning of the "then-alleged" abandonment of the above- 
identified application for allegedly failing to timely file an Appeal Brief (it was merely "alleged" at the 
time because Examiner Caldwell only oraliy indicated the abandonment, and presumably could not 
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provide a copy of the Notice of Abandonment because the case was "lost"), Applicant submitted to 
the Office the Request to Withdraw Holding of Abandonment on November 3, 2006 based on 
Applicant's timely filing of an Appeal Brief on March 25, 2002 as evidenced by the Office stamp on 
such date. There is no record that the Office ever responded to the Request to Withdraw Holding of 
Abandonment filed by Applicant on November 3, 2006, 

With continued reference to the Notice of Abandonment mailed on June 8, 2005. the actual 
stated reason for abandonment was an alleged failure to timely file a proper reply to the Office Letter 
mailed on September 24, 2001 . However, Applicant timely filed a Notice of Appeal with a one-month 
extension of time on January 24, 2002 as evidenced by the Office's stamp on such date (see Exhibit 
A, paper no. 5; also see "Contents index" in file wrapper of the present appiication, paper no. 28}. in 
this regard, the above-identified appiication was never abandoned in the first place, and therefore 
the Notice of Abandonment mailed on June 8, 2005 was improperly issued. Applicant therefore 
respectfully requests withdrawal of this holding of abandonment. 

If Is also noted that, irrespective of the "lost" nature of the above-identified application, the 
Office did not respond to any of the papers filed by Applicant during the approximate four-year time- 
span between the Appeal Brief filed by Applicant on March 25, 2002 and the Request to Withdraw 
Holding of Abandonment filed by Applicant on November 3, 2006, all of which were actually received 
by the Office as evidenced by the Office stamps on the various papers (see Exhibit A). 

Upon reconstruction and withdrawal of the holding of abandonment of the above-identified 
application, Applicant respectfully requests substantive examination of the Appeal Brief timely filed 
by Applicant on March 25, 2002. In the event that a telephone discussion would expedite the 
prosecution of this application, the Office is invited to contact the undersigned. 



Respectfully submitted, 

MARSH FISCHMANN & BREYFOGLE LLP 




Registration No. 57,895 
Telephone: 303-770-0051 



Date: .J 
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Attorney Docket No.: P2145 
Application No.: 08/883,838 



Copy of Applicant's Record of Correspondence Between USPTO and Applicant 
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PATENT 



IN THE UNITED STATES PATENT AND TRADEMARK OFFICE 
BEFORE THE BOARD OF PATENT APPEALS AND INTERFERENCES 



Group Art Unit; 2132 
: D.I* 



in re/ 
Li GONG 

Serial No,: 08/883,636 
Filed: June 26, 1997 

For; LAYER-INDEPENDENT SECURITY FOR COMMUNICATION CHANNELS 



Ws 
Sir: 



forF 
DC 20231 



Submitted herewith in triplicate is Appeliant(s) Appeal Brief in support of the Notice of Appeal 
filed January 24, 2002. Please charge the Appeal Brief fee of $320.00 to Deposit Account 500417. 

To the extent necessary, a petition for an extension of time under 37 CF.R. 1.136 is hereby 
made. Please charge any shortage in fees due in connection with the filing of this paper, including 
extension of time fees, to Deposit Account 500417 and please credit any excess fees to such deposit 



600 13* Street, N.W. 

Washington, DC 20005-3096 
(202)756-8000 WLSxac 
Facsimile; (202)756-8087 
Date; March 25, 2002 



Respectfully s 
MCDERMOTT, WILL & EMERY 

Wesley L. Strickland 
Registration No. 44,363 
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IN THE UNITED STATES PATENT AND TRADEMARK OFFICE 
BEFORE THE BOARD OF PATENT APPEALS AND INTERFERENCES 



In re Application of 

Li GONG 

Serial No.: 08/883,636 
Filed: June 26, 1997 



Group Art Unit: 2132 
: D.l 



For: LAYER-INDEPENDENT SECURITY FOR COMMUNICATION CHANNELS 



APPEAL BRIEF 

Commissioner lor Patents 
Washington, DC 2023! 

Sir: 

This Brief is submitted pursuant to the Notice of Appeal submitted January 24, 
2002 regarding the final rejection of claims 1-8, 13-20, 22-24, 26-32, 34 and 35 dated 
September 24,20(51. 



MMJmiXJEWMWAl. 
Sun Microsystems, Inc. is the real party in interest in the pending application. 

RELATED APPEALS AND IN TERFERENCES 
No appeal or interference is known to Appellants that will affect or be directly 
affected by or have a bearing ob the Board's decision in the pending appeal There is a 
Petition For Review of A Director's Decision filed July 19, 2001 that is still pending 
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resolution. 

STATUS OF CLAIMS 
Claims 1 -8, 1 3-20, 22-24, 26-32, 34 and 35 remain pending. All the pending 
claims stand under final rejection, from which rejection, this appeal is taken. Claim 29 is 
not specifically addressed in the detailed treatment of the claims in the Final Office Action; 
however, the Office Action Summary identities claim 29 as rejected and Appellants have 
prepared this Appeal Brief under the assumption that the Examiner's actual intentions with 
regard to claim 29 are reflected by the Summary Sheet, 

STATUS OF AMENDMENTS 

None of the claims have been Amended after the Final Office Action dated 
September 24, 2001. 

SUMMARY OF INVENTION 

The present invention provides layer-independent secure communications in a 
multi-layered communication network. In general, a communication channel or 
connection is first established between a first multi-layered network node and a second 
multi-layered network node. Then, a first stream is established between a first process, 
executing on the first node, and the communication channel. A second stream is then 
established between a second process, executing on the second node, and the 
communication channel. As the first process writes data to the first stream, the data is 
encrypted and when the encrypted data is read out of the second stream by the second 
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process, the data is decrypted. 

There are several benefits achieved by the claimed invention These are set forth, 
for example, on pages 2 and 3 of the specification When the amount of information 
included in session is small, for example, when a session contains only a single message, 
then the overhead contributable to set up negotiation can adversely affect communications 
performance. This negative is overcome by the claimed invention. Further, some 
communicationarchitecturesdo not include a session layer, which requires that a session 
layer be added to support session type security, farther degrading performance. Layer 
specific encryption can avoid the overhead penalty associated with set up negotiation, but it 
has additional limitations. First, encryption and decryption must occur at the same 
corresponding layer on both the transmitting and receiving network nodes. The traditional 
techniques such as the simple key management for internet protocols (SKIP) and secure 
sockets layer (SSL) each require layer specific function calls. The result is that one 
application implementing security according to SKIP cannot interact with another 
application implementing security according to SSL. In addition layer-specific encryption 
could be difficult to employ an object-oriented environments because of the inherent level 
of abstraction required. For example, some layers operate of databytes, which often is a 
much lower level than objects b an object oriented environment. 



The following issues are presented by this Appeal, whether the Examiner erred in: 
a) rejecting claims 1, 5, 13, 17, 20, 24, 28, and 32 under 35 USC § 102(e) for 
anticipation by Heiwig et al (US Patent No. 5,793,749); 
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b) rejecting claims 1, 5, 13, 17, 20, 24, 28, and 32 under 35 USC §102(b) for 
anticipation by Sckneier (Applied Cryptography); and 

c) rejecting claims 2, 3, 4, 6, 7, 8, 14, 15, 16, 18, 19, 22, 23,26, 27, 30, 31, 34 and 
35 under 35 USC §103 as unpatentable over either Helwig el at or Schneier. 

GROUPING OF CLAIMS 
Each claim is argued separately and each claim stands or fells independently of any 

other. 

ARGUMENT 

A. The Examiner erred in rejecting claims 1, 5, 13, 17, 20, 24, 28 aisd 32 as 
anticipated by Helwig et aL 

The factual determination that Helwig et at. identically disclose the claimed 
inventions recited in claims 1, 5, 13, 17, 20, 24, 28, and 32 under35 USC §1 02(c) is 
erroneous given the differences between the claimed inventions and the system of 
Helwig et al. The portion of the specification of Helwig et al relied upon by the 
Examiner refers to and describes Figure 3 and, more particularly, to a "pie-transmit 
process 68" within Figure 3. The whole purpose of that particular branch coming off of 
66- Y (in which the pre-transmit process 68 is included) is to record a test message in 
memory. 

The Examiner's rejection is predicated upon an inaccurate tactual determination. 

The factual determination of lack of novelty under 35 USC §102 requires the identical 
disclosure in a single reference of each element of a claimed invention such that the 
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identically claimed invention is placed in possession of one having ordinary skill in the 
art. Helfix, Ltd. v. Loc-Bloc, Ltd. 54 USPQ2d 1299 (Fed. Or. 2000); TD 
Corporation v. Lydall, Inc. 159 FJdL 534, 48 USPQ2d 1321 (Fed. Cir. 1998); 
Electro Medical Systems S.A. v. Coopoer Life Science, Inc., 34 F3d. IMS, 32 
USPQltt 1017 (Fed, Cir. 1994). There aie significant differences between the invention 
recited in claims 1, 5, 13, 17, 20, 24, 28, and 32 and Helwig ei al's system that contradict 
the factual determination that Helwig ei al identically describe the claimed invention 
within the meaning of 35 USC §102. 

With respect to claim 1 , there is no teaching or suggestion within Helwig ei al of: 

a) establishing a communications channel in which there is then 
established "a first stream between the first process and the communication channel"; and 

b) "establishing a second stream between the second process and the 



c) encrypting, independent of a transport protocol, data in response tojhe 
data being wittento .the fagtstreani; and 

d) decry pting, independent of the transport protocol, the encrypted data m 

In addition to the features identified above with respect to claim 1 , claim 5 recites a 
computCT-readablemedium. carrying code that when executed performs various functions. 
This requirement of claim 5 is not disclosed by Helwig ei al 

In addition to the features identified above with respect to claim ! , claim 1 3 recites 
a computer :datasignal embodied on a camgrwave, representing instructions that when 
executed performs various functions. This requirement of claim 13 is not disclosed by 
Helwig etai 

With respect to claim 1 7, there is no teaching or suggestion within Helwig ei al of: 
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b) encrypting data independent of communication protocol layers in 
response to data being written to the stream. 

With respect to claim 20, there is no teaching or suggestion in Hehrig et al of: 

a) establishing a first stream from a first process t 



b) establishing a second s 



In addition to the features identified above with respect to claim 20, claim 24 



functions. This requirement of claim 24 is not disclosed by Helwig el al 

In addition to the features identified above with respect to claim 20, claim 28 

recites a communications network performing the recited method steps. This requirement 

of claim 28 is not disclosed by Hehrig et al 

In addition to the features identified above with respect to claim 20, claim 32 

recites a computer data signal embodied on a carrier wave, representing instructions that 

when executed performs various functions. This requirement of claim 32 is not disclosed 

by Helwig et al. 

The above argued differences between the claimed inventions and the system of 
Helwig et al. undermine the factual determination that Helwig et al identically describe 
the claimed inventions within the meaning of 35 USC §102. Kolster Speeded AB v. 
Crucible, Inc., 793 F.2d 1S6S 5 230 USPQ 81 (Fed. Cir. 1986), Thus, the Examiner 
hm foiled to establish a prima fade ease of anticipation. Appellants, therefore, 
respectfully submit that each the imposed rejection of claims 1 , 5, 13, 17, 20, 24, 28 and 
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32 under 35 USC §1 02 for lack of novelty, as evidenced by Helwig et a!., are 
independently factually erroneous, 

B. The Examiner erred in rejecting dmm$ 1, 5* 13, 17, 20, 24, 28 and 32 as 
anticipated by Schneier. 

The Examiner erred in rejecting claims 1,5,13,17,20, 24, 28, and 32 binder 35 
USC § 102(b) as anticipated by Schneier (Applied Cryptography). The factual 
determination that Schneier identically disclose the claimed inventions recited in claims 
1,5, 13, 17, 20, 24, 28, and 32 under 35 USC §102(b)is erroneous given the differences 
between the claimed inventions and the system of Schneier, Schneier describes an XOR 
encryption process, known as a stream cipher, with its conespondingdecryption process. 
With respect to all the claims, this discussion of a ciphering model by Schneier does not 
disclose (or even suggest) establishment of a communications channel followed by 
establishing a stream between a process and the channel and another stream from the 
channel to an output process.' Thus, the Examiner has failed to establish & prima facie 
case of anticipation. 

With respectto claim 1 , there is no teaching or suggestion within Schneier of: 

a) establishing a commiinications channel in which there is then 
established "a first stream between the first process and the communication channel"; and 

b) "establishing a second stream between the second process and the 
communication channel"; and 

c) encrypting, independent of a transport protocol data in responseto the 

d) decrypting, independent of the transport protocol, the encrypted data in 
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rggpgnse to thee 

In addition to the features identified above with respect to claim 1 , claim 5 recites a 
computer-readabiemediuxn, carrying code that when executed performs various functions. 
This requirement of claim 5 is not disclosed by Schneier 

In addition to the features identified above with respect to claim 1 , claim 1 3 recites 
a computer data signal embodied on a carrier wave, representing instructions that when 
executed performs various functions. This requirement of claim 13 is not disclosed by 
Schneier 

With respect to claim 1 7, there is no teaching or suggestion within Schneier of: 

a) establishing a stream MwegEAPE>ggss and a communication channel; 



b) 



i protocol layers in 



iseto data being written to the s 
With respect to claim 20, there is no teaching or suggestion in Schneier of: 
a) establishing a first stream from a first process t 



In addition to the features identified above with respect to claim 20, claim 24 
recites a computer-readableraedium, carrying code that when executed performs various 
functions, This requirement of claim 24 is not disclosed by Schneier. 

In addition to the features identified above with respect to claim 20, claim 28 
recites a communications network performing the recited method steps. This requirement 
of claim 28 is not disclosed by Schneier 

In addition to the features identified above with respect to claim 20, claim 32 
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recites a computer data signal embodied on a carrier wave, representing instructions that 
when executed performs various functions. This requirement of claim 32 is not disclosed 
by Schneier 

The above argued differences between the claimed inventions md the system of 
Schneier undermine the factual determination that Schneier identically describe the 
claimed Inventions within the meaning of 35 USC §102. Kolster Speedsteel AB v. 
Crucible, Inc., 793 F.2d 1565, 230 USPQ 81 (Fed. Cir. 1986), 

Thus, tlb® Examiner has foiled to establish a prims fade case of anticipation. 
Appellants, therefore, respectfully submit that each the imposed rejection of claims 1 , 5, 
13, 17, 20, 24, 28 and 32 under 35 USC §102 for lack of novelty, as evidenced by 
Schneier, are independently factually erroneous. 



C. The factual determination that either Helwig ei aL or Schneier identically 
close (or even suggest) a "stream" as meant and recited in MX. of the present 
Ims is erroneous whm the appropriate disclosures are considered as si whole 
I interpreted with internal consistency from the perspective of one of 



Neither Helwig ef al, nor Schneier teach or suggest the use of a "stream" as that 
term was used or applied in the specification and claims of the present application. 

Helwig ei al. does refer to a "data stream" However, the use of similar sounding 
terms is not necessarily the same as using trams that mean the same thing. Therefore, the 
mere use of similar sounding terms does not end the inquiry into whether a reference can 
be considered as identically disclosingthe same subject matter. The meaning of "data 
streams" in Helwig et al is interpreted in the context of that specification ai 
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Hehvig es al the "data streams" are a series of bits output from a vocoder and are used as a 
description of the data's particular physical format, 

In contrast to the interpretation as meant by Helwig et al, the present claim term 
"stream" is to be interpreted in light of the claim language, the specification, and the 
prosecution history; and the interpretation proceeds from the vantage point of one skilled 
in the art. Atlantic Thermoplastics Co., Inc. v. Faytex Corp., 970 F.2d 834, 23 
USPQ2d 1481 (Fed. Cir. 1992); Hayeses International, Inc. v. Jessop Steel Co., 8 
F.3d 1573, 28 USPQ2d 1652 (Fed. Cir. 1993). Ultimately, claim language is construed 
according to the standard of what those words would have meant to one skilled in the art 
as of the application date, Werner v. NEC Electronics, Inc., 102 F 3d 534, 41 
USPQld l©23 (Fed. Cir. 1996). 

It is importantto interpreting phrase "stream" within the claims in a way which is 
consistent with the specification, rather than at odds to it. For example, one would 
obviously not interpret "stream" in the context of this application as referring to a flow of 
water down a mountain side. On page 4 of the specification, beginning line 9, the 
application introduces a "stream" as an abstraction which refers to the transfer or "flow" of 
data, in any format, from a single source, to a single destination. Let us consider the 
following example in the context of Figure 1 of the application. Let us assume that process 
1 08 is an MPEG2 transmission process. It may generate a plurality of "streams", such as a 
left channel audio, a right channel audio, a video, a closed-captioned stream, and a control 
channel stream. When the MPEG2 transmission process 1 08 desires to send information to 
process 1 1 0, which, in this example, is an MPEG2 display process, a © 
channel would be set up between node 1 08 and node 1 04 then, the individual si 
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would be applied to the communications channel for transmission to the node 104. Note 
that the communication channel from the process 1 08 goes through all of the layers shown 
in Figure 1 of each protocol stack, namely the application layer, presentation layer, session 
layer, transport layer, network layer, datalink layer, and physical layer before going across 
the transmission medium to the other node and then passing through the same layers as an 
inverse order. It is known in the art to apply layer specific encryption at any of the layers 
of the OS1 reference model shown in Figure 1 . 

If the invention of claim 1 were applied to a communication system which 
corresponded to the OSI reference model, first, communications would be established 
between the first network node and the second network node. The request for connection 
would come from the process 108 to the application layer and appropriately process 
through the layers until a connection is set up to node 1 04. Once that is done, a first 
stream, say, for example, an MPEG control channel stream is established between the first 
process 108 and the communications channel which begins at application layer 1 18. At the 
other end, a stream would be established between the application layer 1 28 of node 1 04 
and the process 1 1 0 for the MPEG control channel data. As set forth in limitation d) of 
claim 1 , in response to data being written to the first stream [from process 1 08] the data is 
encrypted to generate encrypted data which is then applied to the application layer 1 1 8. 
The encryptions performed independently of any of the layers of the communications 
protocol stack. Note that in the example of MPEG2, encryption can be applied selectively 
to the streams rather than to everything that is transmitted over the commimications 
channel In OSI reference model, the layer normally responsible for encryption is the 
presentationiayer while the application layer, 1 1 8, handles the interface between the 
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software involved with the process 1 08 and the communications channel. 

One limitation of claim 1 states "in response to the encrypted data being read from 
the second stream, decrypting the encrypted data to recover the decrypted data." 

As used within the present application, "stream" is an abstraction, which has 
properties beyond merely being a string of binary digits. "Streams", as would be 
understood by a skilled software practitioner, are defined in object oriented languages such 
as Java and have a whole set of associated properties which distinguishthem from a flow 
of water down the mountain side and which also distinguish them from simply an arbitrary 
string of binary l's and 0's. 



With regards to Schmier, the referenced portion (Section 9.4) of his book 
Applied Cryptography describes a cipher model known as "Stream Ciphers". In 
particular, the Examiner relies of Figure 9.6 as anticipating the present claims. So, 
similar to Helwig et al., Schmier also uses a similar sounding term - "stream cipher"; 
but, once again, the inquiry is not whether similar sounding terms are being used but 
whether the terms being used convey an identical disclosure of subject matter as required 
under 35 USC §102. 

The following information from Sitter's Crypto Glossary and Dictionary of 
Technical Cryptography (Current Edition: 2002 Feb 1 8, which can be found at, for 
example, http:/M'ww.ciphersbyritter.corn/GLOSSARY.HTM) P rovides a helpful context 
for evaluatingthe disclosure of Schmier. 

The glossary has a heading of "Cipher Taxonomy" which includes the following 
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BLOCK CIPHER 

A block cipher requires the accumulation of some amount of data or 
multiple data elements for ciphering to complete, (Sometimes stream 
ciphers accumulate data for convenience, as in cylinder ciphers, which 
nevertheless logically cipher each character independently.) 

STRE AM CIPHER 

A stream cipher does not need to accumulate some amount of data or 
multiple data elements for ciphering to complete. (Since we define 
only two main "types' 8 of cipher, a stream cipher is the opposite of a 
block cipher and vise versa. It is extremely important that the 
definitions for block and stream ciphering enclose the universe of all 
possible ciphers.) A stream cipher has the ability to transform 
individual elements one-by-one. The actual transformation usually is a 
block transformation, and may be repeated with the same or different 
keying. 



A later heading in this Glossary that relates to a "Stream Cipher" further agrees 

with the specific XOR implementation of Schneier by describing a stream cipher as: 

a cipher which directly handles messages of arbitrary size by ciphering 
individual data elements, such as bits or bytes or characters. 
Conventionally, some form of keyed random number generator is used to 
produce a confusion sequence or running key. That sequence is then 
combined with plaintext data by exclusive-OR to produce ciphertext. 
Enciphering individual characters allows ciphering to begin immediately, 
avoiding the need to accumulate a Ml block of data before ciphering, as is 
necessary in a conventional block cipher. But note that a stream cipher can 
be seen as an operating mode, a "streaming" of a tiny block 
transformation. Stream ciphers can be called "combiner-style" ciphers. 
Also see: a cipher taxonomy. 



Appellants urge that the high-level discussion of a stream ciphering model by 
Schneier does not provide the requisite identical disclosure of the "stream" abstraction as 
intended and used in the present specification and claims. 

Thus, the Examiner has failed to establish a prima facie case of anticipation of the 
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claims when the claims, Schneier and Helwig el al are all properly interpreted, because 
such an interpretation reveals that neither of the references identically disclose the 
"stream" recited in the claims. 



D. The Examiner erred in rejecting claims 3, 4, 7, 8, IS, 16, 18, 19, 22, 23, 
26, 27, 29, 30, 31, 34, and 35 m unpatentable over either Helwig et al. or Scltaeier. 



Claims 3, 4, 7, 8, 15, 16, 18, 19, 22, 23, 26, 27 [and 29], 30, 31, 34 and 35 are not 
obvious over either Helwig et al or Schneier because neither of these references teach or 
other wise suggest a Java-based stream or communication channel and, thus, the 
Examiner did not discharge the initial burden of establishing a prima facie basis to deny 
patentability to the claimed invention under 35 USC §103. 

In applying these references to the claims, the Examiner states: 



"They do not say that the communication channels or data streams are Java-based. 
Official notice is taken that it is old and well-known that Java is intended for 
networked/distributed environments and enables the construction of virus-free, 
tamper-free systems. Therefore it would have been obvious to a person of ordinary 
skill in the art at the time the invention was made to base the systems of Schneier or 
Helwig et al, all of which are networked or distributed environments, on Java, as is 
known in the art. This would enable the implementation of a vims-free, tamper- 



The initial burden of establishing a prima facie basis to deny patentability to a 
claimed invention under any statutory provision always rests upon the Examiner. In re 
Msayne, 41 USFQ2d 1451 (Fed .Cir. 1997); In re Bessel, 34 USPQ2d 1210 (Fed. Cir. 
1995); In re Bell, 26 USPQ2d 1529 (Fed. Cir. 1993); In re Oetiker, 24 USPQ2d 1443 
(Fed. Cir. 1992). In rejecting a claim under 35 U.S.C. § 103, the Examiner is required 
to provide a factual basis to support the obviousness conclusion. In re Warner, 154 
USPQ 173 (CCPA 1967); In re Lunsford, 148 USPQ 721 (CCPA 1966); In re Freed, 
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165 USPQ 570 (CCPA 1970). The Examiner is required to show that all the claim 
limitations are taught or suggested by the references along with some motivation to 
combine the teachings of the references. In re Royka, 180 USPQ 58© (CCPA 1974); 
lis re Wilson, 165 USPQ 494 (CCPA 1970). 

In addition, it has beer? repeatedly held by the Court of Appeals for the Federal 
Circuit that in order to establish the requisite realistic motivation, the Examiner must 
make "clear and particular" factual findings as to a specific understanding or specific 
technological principle which would have realistically impelled one having ordinary skill 
in the art to modify a particular prior art device (the device of either Schneier or Hehvtg 
et al) to arrive at the claimed invention based upon fects~not generalizations. Risk v. 
A.B. Ctaee Co., 234 F,2d 654, 57 USPQ2d 1161 (Fed. Cir. 2000); Ecoiochera Inc. 
v. Southern California Edlsoa, Co. 227 F,3d 361, 56 USPQ2d 1065 (Fed. Cir, 
2000); In re Kotafo, 217 F«3d 1365, 55 USPQ 1313 (Fed. Cir. 2000); In re 
Dembiczak, 175 F3d 994, 50 l3SPQ2d 1614 (Fed. Cir. 1999). Moreover, the 
Examiner is required to explain why one having ordinary skill in the art would have been 
realistically led to modify the devices of either Schneier or Helmg et al to arrive at the 
claimed invention. Eeoloeta Inc. v. SsHtfeera California Edissn, Co. sepra.; In re 
Rcraffet, 149 FJd 1350, 47 USPQ2d 1453 (Feci. Cir. 1998). Significantly, the requisite 
motivation must be undertaken with a reasonably expectation of successfully achieving 
the objective of either Schneier or Helwig et al In re Vaeck, 947 FJd 488, 20 USPQ2d 
1438 (Fed. Cir. 1991). 

Appellant would heavily rely upon the legal tenet that regardless of what the 
Examiner perceives as the source of motivation in the prior art, the Examiner mnst 
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provide "a convincing discussion of the specific sources of the motivation to combine 
the prior art references...", Ecolochem Inc. v. Southern California Edison, Co, 227 
F.3d 1361, 56 USPQ2d 1065 (Fed. CIr. 2000). This basis legal tenet was recently 

enforced by the Court of Appeals for the Federal Circuit in In re Lee _F.3d , 

61USPQ2d 1430 (Fed. Cir. 2002), wherein the Court emphasized that the motivational 
element is a factual question which requires substantial evidence-not conclusory 

Appellants continue to insist that the range and content of the Examiner's Official 
Notice is factually and legally erroneous. But, assuming for the sake of argument that 
the Official Notice was effective for what the Examiner asserts, Appellants urge that the 
requirements of 35 USC §103 have still not been satisfied. The Examiner has failed to 
provide a cogent explanation of why one of ordinary skill would have been motivated to 
modify the message storing device of to Helmg et at. to add, for example, the 
complexity, additional hardware and cost of Java processing capability in the first place. 
Additionally, the Examiner has failed to provide a cogent explanation of why one of 
ordinary skill would have been motivated to augment the general discussion of 
enciphering and deciphering models by Schneier to specifically involve Java and Java 
streams. The Examiner states that Java "enables construction of virus-free, tamper-free 
systems". This type of generalization about technology is exactly the danger of which 
the courts have repeatedly warned against and the type of reasoning which the courts 
have repeatedly found erroneous. The establishment of a prima facie case of 
obviousness must factually explain why one of ordinary skill would have been motivated 
to combine specific teachings, in a specific way in order to arrive at a specific invention. 
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The Examiner's Official Notice (even if true) that Java might have use in tamper-free 
systems, is not a factual explanation of why a skilled artisan would have found it obvious 
to modify the specific systems taught by Schmier or Helwig et al with some reasonable 
expectation of success. 

If the Examiner were to implement the Schmier or Helwig et al systems, using 
Java streams and Java secure channels, it would still not result in the claimed invention. In 
fact, if the phrases "communication channel" and "stream" as used in each of the references 
are interpretedto be a "Java stream" and "Javasecure communication channel,*' the 
interpretation of the references as applied to the independent claims would have to change 
so dramatically as to show their inapplicability under 35 USC §1 02. 

Appellants urge that the Examiner committed clear factual and legal errors. 
Specifically, without the benefit of any facts, the Examiner expanded the teachings of the 
applied references to whatever level he needed in order to combine them, relying only 
upon his "official notice" ability, in complete violation of Ex parte Stern, 13 USPQ2d 
1379 (BPAI 1987). 

Appellants recognize that the specific limitations recited in the different 
"families" of dependent claims appear to be very similar. However, as the patentability 
of each of the independent claims was separately argued, Appellants wish to stress that 
the dependent claims also stand or fall individually and are not being grouped together. 

With respect to claim 3, the claim recites a first Java stream, a second Java stream, 
and a Java secure channel. These requirements of claim 3 are not disclosed or suggested 
by either Helwig et al or Schmier. 

With respect to claim 4, the claim recites a first Java stream, a second Java stream, 
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a third Java stream, and a Java secure channel. These requirements of claim 4 are not 
disclosed or suggested by either Helwig et al. or Schneier. 

With respect to claim 7, the claim recites a first Java stream, a second Java stream, 
and a Java secure channel. These requirements of claim 7 are not disclosed or suggested 
by either Helwg et al or Schneier, 

With respectto claim 8, the claim recites a first Java stream, a second Java stream, 
a third Java stream, and a Java secure channel These requirements of claim 8 are not 
disclosed or suggested by either Helwig et al. or Schneier. 

With respect to claim 1 5, the claim recites a first Java stream, a second Java stream, 
and a Java secure channel. These requirements of claim 15 are not disclosed or suggested 
by either Helwig et al. or Schneier. 

With respect to claim 1 6, the claim recites a first Java stream, a second Java stream, 
a third Java stream, and a Java secure channel. These requirements of claim 1 6 are not 
disclosed or suggested by either Helwig et al or Schneier. 

With respect to claim 1 8, the claim recites a first Java stream and a Java secure 
channel. These requirements of claim 18 are not disclosed or suggested by either Helwig 
et al or Schneier. 

With respectto claim 19, the claim recites a first Java stream, a second Java stream, 
and a Java secure channel These requirements of claim 19 are not disclosed or suggested 
by either Helwig et al or Schneier. 

With respect to claim 22, the claim recites a first Java stream, a second Java stream, 
and a Java secure channel These requirements of claim 22 are not disclosed or suggested 
by either Helwig et al or Schneier. 
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With respect to claim 23, the claim recites a first Java stream, a second Java stream, 
a third Java stream, and a Java secure channel. These requirements of claim 23 are not 
disclosed or suggested by either Helwig et al. or Schneier. 

With respect to claim 26, the claim recites a first Java stream, a second Java stream, 
and a Java secure channel. These requirements of claim 26 are not disciosedor suggested 
by either Helwig et al or Schneier. 

With respect to claim 27, the claim recites a first Java stream, a second Java stream, 
a third Java stream, and a Java secure channel. These requirements of claim 27 are not 
disclosed or suggested by either Helwig et al. or Schneier. 

With respect to claim 29, the claim recites that the encryption of the first stream and the 
decryption of the second stream is specific to a communication protocol layer. 'Ms 
requirement of claim 29 is not. disclosed or suggested by either Helwig et al. or Schneier. 

With respect to claim 30, the claim recites a first Java stream, a second Java 
stream, and a Java secure channel These requirements of claim 30 are not disclosed or 
suggested by either Helwig et al. or Schneier. 

With respect to claim 3 1 , the claim recites a first Java stream, a second Java s 
a third Java stream, and a Java secure channel These requirements of claim 3 1 are not 
disclosed or suggested by either Helwig et al. or Schneier. 

With respect to claim 34, the claim recites a first Java stream, a second Java strea 
and a Java secure channel. These requirements of claim 34 are not disclosed or suggest 
by either Helwig et al or Schneier, 

With respect to claim 35, the claim recites a first Java stream, a second Java ste 
a third Java stream, and a Java secure channel. These requirements of claim 35 are not 
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disclosed or suggested by either Helwig ei al or Schneier. 

The above argued differences between the claimed inventions and the system of 
Helwig et al and Schneier undermine the factual determination that Helwig et al and 
Schneier provide a prima facie case of obviousness within the meaning of 35 USC §103 
of claims 3, 4, 7, 8, 1 5, 1 6, 1 8, 1 9, 22, 23, 26, 27, 30, 31, 34 and 35 

E. The Examiner erred! in rejecting claims 2, 6, and 14 m unpatentable over 
either Helwig et al. or Schneier. 

Claims 2, 6, and 14 are not obvious over either Helwig ei al or Schneier because 
neither of these references teach or other wise suggest performing communication 
protocol layer specific encryption or decryption of the data and, thus, the Examiner did 
not discharge the initial burden of establishing a prima facie basis to deny patentability 
to the claimed invention under 35 USC §103. 

In rejecting these claims, the Examiner asserts that if some encryption is good, 
then more encryption is better. Appellants admit that some liberty was taken with 
paraphrasing the Examiner's comments; however, if read carefully, his assertions really 
do not say anything more than the above generalization. As stated previously, the 
Examiner must make "dear and particular" factual findings as to a specific 
understanding or specific technological principle which would have realistically 
impelled one having ordinary skill in the art to modify a particular prior art device (the 
device of either Schneier or Helwig et al) to arrive at the claimed invention based upon 
facts-not generalizations. 

Each of claims 2, 6 and 14 require more than simply a second encryption step. 
The claims recite that the encryption being performed be "a communication protocol 
20 
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layer specific encryption," The Examiner has not explained why a skilled artisan, with 
either Schmier or Helwig ei al. in hand, would have found it obvioiis to add to the 
respective systems a communication layer protocol specific encryption. Schneier does 
not disclose a stream cipher in the context of networked nodes communicating over a 
channel and Helwig ei al is concerned about storing a message, not with secure 
communications. Additionally, Helwig ei al discusses the need for responsiveness in 
their system and one skilled in the art would not have adversely impacted performance in 
such a system by adding another layer of encryption processing. Accordingly, the 
Examiner's generalization might indicate that employing multiple layers of encryption 
was known and even that protocol specific encryption was known, However, these 
conclusions fall far short of establishing a prima facie case of obviousness under 35 USC 
§103. The Examiner has failed to provide a fact-based rationale why one of ordinary 
skill would have been motivated to modify specifically Schneier or Helwig ei al with a 
second encryption/decryption step and why that skilled artisan would have performed the 
encryption/decryption as being protocol layer specific. 

The lack of a fact-based explanation for expanding the teachings of Helwig et al. 
and Schneier undermine the factual determination that Helwig et al. and Schneier 
provide a prima facie case of obviousness within the meaning of 35 USC §103 of claims 
2, 6, and 14. 
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F. Claims 2, 3, 4, 6, 7, 8, 14, IS, 16, 18, 19, 22, 23, 26, 27 [and 29], 30, 31, 34 
and 35 are not obvious over either Heiwig et at or Severer because neither of these 
references anticipate the respective independent claims from which these claims 
depend and, thus, the Examiner did not discharge the initial burden of establishing 
si prima facie basis to deny patentability to the claimed invention under 35 USC 
§103. 

In rejecting the dependent claims, the Examine* relies on either Heiwig et al or 
Schmier as applied to the independent claims and then asserts, through "Official Notice" 
that the specific features in the dependent claims are well-known. 

As argued above, neither of the applied references disclose al! the features of the 
independent claims - features which are incorporated into respective dependent claims. 
Accordingly, for the reasons presented above, with regard to the independent claims, 
neither reference discloses or suggests every feature recited in the dependent claims. 

Neither Schneier nor Heiwig et al., therefore, provide the factual basis needed to 
properly establish a prima facie case of obviousness under 35 USC § 1 03 . 



CONCLUSION 

For the reasons advanced above, the Examiner's factual determination that 
Schneier identically describes the claimed inventions of claims 1, 5, 13, 17, 20, 24, 28 
and 32, within the meaning of 35 USC §102, is erroneous. For the reasons advanced 
above, the Examiner's factual determination that Heiwig et al. identically describe the 
claimed inventions of claims 1, 5, 13, 17, 20, 24, 28 and 32, within the meaning of 35 
USC §102, is erroneous. Appellants, therefore, respectfully solicit the Honorable Board 
to reverse each of the Examiner's rejections. 
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For the reasons advanced above, Appellants submit that the Examiner did not 
establish a prima facie basis to deny patentability to any of the claims on Appeal under 
35 USC §103, Appellants, therefore, respectfully solicit the Honorable Board to reverse 
each of the Examiner's rejections under 35 USC §103. 

To the extent necessary, a petition for an extension of time under 37 C.F.R. 1 . 1 36 is 
hereby made. Please charge any shortage in fees due in connection with the filing of this 
paper, including extension of time fees, to Deposit Account 50-0417 and please credit any 
excess fees to such deposit account. 

Respectfully submitted, 
MCDERMOTT, WILL & EMERY 

Wesley L. Strickland 
Registration No, 44,363 

600 13 th Street, N.W, 
Washington, DC 20005-3096 
(202) 756-8000 WLSrcac 
Date; Mareh2S,2002 
Facsimile: (202) 756-8087 



WDC99 5774g3-l.OS0435.0OSS 



23 



08/883,636 



APPENDIX 

I. (Twice Amended) A method for providing communication protoco! layer 
independent security for data transmitted between a first process, executing on a first 
network node, and a second process, executing on a second network node, wherein the 
first network node and the second network node each support at least one common 
communication protocol layer, the method comprising the steps of: 

establishing a communication channel between the first network node and 
the second network node; 

establishing a first stream between the first process and the 
communication channel; 

establishing a second stream between the second process and the 
communication channel; 

in response to the data being written to the first stream, encrypting the 
data to generate encrypted data, the encrypting of the data being performed independent 
of any communication protocol layers used to transport the encrypted data from the first 
network node to the second network node; 

causing the encrypted data to be transmitted from the first network node 
to the second network node according to the at least one communication protocol layer 
supported by the first and second network nodes; and 

in response to the encrypted data being read from the second stream, 
decrypting the encrypted data to recover decrypted data which is identical to the data on 
the first network node before the data was written to the first stream, the decrypting of 
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the encrypted data being performed independent of any communication protocol layers 

used to transport the encrypted data from the first network node to the second network 

node. 

2. (Thrice Amended) The method of Claim 1 , father including the steps of 

performing a communication protocol layer specific encryption of the 
data on the first network node, and 

performing a communication protocol layer specific decryption of the 
data on the second network node, 

3. The method of Claim 1, wherein the communication channel is a Java secure 
channel, 

wherein the first stream is a first Java stream, 
wherein the second stream is a second Java stream, 

wherein the step of establishing a communication channel between the first and 
second network nodes further comprises the step of establishing a Java secure channel 
between the first and second network nodes, 

wherein the step of establishing a first stream between the first process and the 
communication channel further comprises the step of establishing a first Java stream 
between the first process and the Java secure channel, and 

wherein me step of establishing a second stream between the second process and 
the communication channel further comprises the step of establishing a second Java 
stream between the second process and the Java secure channel. 
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4. (Twice Amended) The method of Claim 1, wherein the communication 
channel is a Java secure channel, wherein the first stream is a Java stream, 

wherein the second stream is a Java stream, 

wherein the method further comprises the step of connecting the Java secure 
channel to a third Java stream, and 

wherein the third Java stream provides for the transmission' of data according to a 
specific communication protocol layer, 

5. (Twice Amended) A computer-readable medium carrying one or more 
sequences of one or more instructions for providing communication protocol layer 
independent security for data transmitted between a first process, executing on a first 
network node, and a second process, executing on a second network node, wherein the 
first network node and the second network node each support at least one common 
communication protocol layer, the one or more sequences of one or more instructions 
including instructions which, when executed by one or more processors, cause the one or 
more processors to perform the steps of: 

establishing a communication channel between the first network node and the 
second network node; 

establishing a first stream between the first process and the communication 
channel; 

establishing a second stream between the second process and the communication 
channel; 

in response to the data being written to the first stream, encrypting the data to 
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generate encrypted data, the encrypting of the data being performed independent of any 
communication protocol layers used to transport the encrypted data from the first 
network node to the second network node; 

causing the encrypted data to be transmitted from the first network node to the 
second network node according to the at least one communication protocol layer 
supported by the first and second network nodes; and 

m response to the encrypted data being read from the second stream, decrypting 
the encrypted data to recover decrypted data which is identical to the data on the first 
network node before the data was written to the first stream, the decrypting of the 
encrypted data being performed independent of any communication protocol layers used 
to transport the encrypted data from the first network node to the second network node. 

6. (Twice Amended) The computer-readable medium of Claim 5, wherein the 
computer-readable medium further includes instructions for performing the steps of 

performing a communication protocol layer specific encryption of the data on the 
first network node, and 

performing a communication protocol layer specific decryption of the data on the 
second network node. 

7. The computer-readable medium of Claim 5 /wherein the first stream is a first 
Java stream, 

wherein the second stream is a second Java stream, 

wherein the step of establishing a communication channel between the first and 
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second network nodes further comprises the step of establishing a Java secure channel 
between the first and second network nodes, 

wherein the step of establishing a first stream between the first process and the 
communication channel further comprises the step of establishing a first Java stream 
between the first process and the Java secure channel, and 

wherein the step of establishing a second stream between the second process and 
the communication channel further comprises the step of establishing a second Java 
stream between the second process and the Java secure channel. 

8, (Amended) The computer-readable medium of Claim 5, wherein the 
communication channel is a Java secure channel, 

wherein the first stream is a Java stream, 

wherein the second stream is a Java stream, 

wherein the computer-readable medium further includes instructions for 
connecting the Java secure channel to a third Java stream, and 

wherein the third Java stream provides for the transmission of data according to a 
specific communication protocol layer. 

13. (Twice Amended) A computer data signal embodied in a carrier wave and 
representing sequences of instruction which, when executed by one or more processors, 
provide communication protocol layer independent security for data transmitted between 
a first process, executing on a first network node, and a second process, executing on a 
second network node, according to at least one common communication protocol layer 
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supported by the first and second network nodes, by performing the steps of: 

establishing a communication channel between the first network node and the 

second network node; 

establishing a first stream between the first process and the communication 

channel; 

establishing a second stream between the second process and the communication 

channel; 

in response to the data being written to the first stream, encrypting the data to 
generate encrypted data, the encrypting of the data being performed independent of any 
communication protocol layers used to transport the encrypted data from the first 
network node to the second network node; 

causing the encrypted data to be transmitted from the first network node to the 
second network node according to the at least one communication protocol layer 
supported by the first and second network nodes; and 

in response to the encrypted data being read from the second stream, decrypting 
the encrypted data to recover decrypted data which is identical to the data on the first 
network node before the data was written to the first stream, the decrypting of the 
encrypted data beiiig performed independent of any communication protocol layers used 
to transport the encrypted data from the first network node to the second network node. 

14, (Twice Amended) The computer data signal of Claim 13, wherein the 
computer sequence of instructions further includes instructions for performing the steps 
of 
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performing a communication protocol layer specific encryption of the data on the 
first network node, and 

performing a communication protocol layer specific decryption of the data on the 
second network node. 

15, The computer data signal of Claim 13, wherein the first stream is a first Java 

wherein the second stream is a second Java stream, 
wherein the step of establishing a communi cation channel between the first and second 
network nodes further comprises the step of establishing a Java secure channel between 
the first and second network nodes, 

wherein the step of establishing a first stream between the first process and the 
communication channel farther comprises the step of establishing a first Java stream 
between the first process and the Java secure channel, 

wherein the step of establishing a second stream between the second process and 
the communication channel further comprises the step of establishing a second Java 
stream between the second process and the Java secure channel, 

16. (Amended) The computer data signal of Claim 13, wherein the 
communication channel is a Java secure channel, 

wherein the first stream is a Java stream, 

wherein the second stream is a Java stream, 

wherein the computer sequence of instructions further includes instructions for 
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connecting the Java secure channel to a third Java stream, and 

wherein the third Java stream provides for the transmission of data according to a 
specific communication protocol layer. 

17. (Amended) A method for providing communication protocol layer 
independent security for data transmitted by a process executing on a network node, the 
method comprising the steps of: 

a) establishing a stream between the process and a communication channel; 

and 

b) in response to the data being written to the stream, encrypting the data to 
generate encrypted data, the encrypting of the data being performed independent of any 

protocol layers used to transport the encrypted data on the 



1 8. (Amended) The method of Claim 1 7, wherein the communication channel is a 



wherein the stream is a first Java stream, and 

wherein the step of establishing a strea 
communication channel further comprises the step of establishing a Java stream between 
the process and the Java secure channel. 



1 9. (Amended) The method of Claim 1 7 S wherein the 
i the stream is a Java stream, 
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wherein the method further comprises the step of connecting the Java secure 
channel to a second Java, stream, and 

wherein the second Java stream provides for the transmission of data according 
to a specific communication protocol layer, 

20. (Amended) A method for providing communication protocol-independent 
security for data transmitted between a first node and a second node, the method 
comprising the steps of: 

establishing a communication channel between a first network node and a second 
network node; 

establishing a first stream from a first process to the communication channel after 
the establishment of the communication channel, wherein the first stream is encrypted 
after the first process and before entering the communication channel and the encrypted 
first stream is independent of any communication protocol layers; and 

establishing a second stream from the communication channel to a second 
process after the establishment of the communication channel wherein the second 
stream is decrypted after the communication channel and before entering the second 
process. 

22. (Amended) The method of claim 20, wherein: 
the first stream is a first Java stream; 
the second stream is a second Java stream; 

the step of establishing a communication channel between the first network node 
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and second network node farther comprises the step of establishing a Java secure 
channel between the first network node and second network node; 

the step of establishing the first stream comprises the step of establishing the first 
Java stream after the fsrst process and before the Java secure channel; and 

the step of establishing a second stream comprises the step of establishing the 
second Java stream after the Java secure channel arid before the second process. 



23 . (Amended) The method of claim 20, wherein: 
the communication channel is a Java secure channel; 

the first stream is a Java stream; 

the second stream is a Java stream; 

the method further comprises the step of connecting the Java secure channel to a 
third Java stream; and 

the third Java stream provides for the transmission of data according to a specific 



24. (Amended) A computer-readable medium carrying one or more sequences of 
one or more instructions for providing communication protocol-layer independent 
security for data transmitted between a first node and a second node, the one or more 
sequences of one or more instructions including instructions which, when executed by 
one or more processors, cause the one or more processors to perform the steps of; 

establishing a communication channel between a first network node and a second 
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establishing a first stream from a first process to the communication channel after 
the establishment of the communication channel, wherein the first stream is encrypted 
after the first process and before entering the communication channel and the encrypted 
first stream is Independent of any communication protocol layers; and 

establishing a second stream from the communication channel to a second 
process after the establishment of the communication channel, wherein the second 
stream is decrypted after the communication channel and before entering the second 
process. 

26. (Amended) The computer-readable medium of claim 24, wherein: 
the first stream is a first Java stream; 
the second stream is a second Java stream; 

the step of establishing a communication channel between the first network node 
and second network node further comprises the step of establishing a Java secure 
channel between the first network node and second network node: 

the step of establishing the first stream comprises the step of establishing the first 
Java stream after the first process and before the Java secure channel; and 

the step of establishing a second stream comprises the step of establishing the 
second Java stream after the Java secure channel and before the second process. 



27. The method of claim 24, wherein: 
the communication channel is a Java secure channel; 
the first stream is a Java stream; 
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the second stream is a Java stream 

the method farther comprises the step of connecting the Java secure channel to a 
third Java stream; and 

the third Java stream provides for the transmission of data according to a specific 
commuracation protocol layer. 

28. (Amended) A communications network providing communication protocol- 
independent security for data transmitted between a first node and a second node, the 
communication network performing the steps of: 

establishing a communication channel between a first network node and a second 
network node; 

establishing a first stream from a first process to the communication channel after 
the establishment of the communication channel, wherein the first stream is encrypted 
after the first process and before entering the communication channel and the encrypted 
first stream is independent of any communication protocol layers; and 

establishing a second stream from the communication channel to a second 
process alter the establishment of the communication channel, wherein the second 
stream is decrypted after the communication channel and before entering the second 
process. 

29. The communication network of claim 28, wherein the encryption of the first 
stream and the decryption of the second stream is specific to a communication protocol 
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30. (Amended) The communication network of claim 28, wherein: 
the first stream is a first Java stream; 
the second stream is a second Java stream; 

the step of establishing a communication channel between the first network node 
and second network node further comprises the step of establishing a Java secure 
channel between the first network node and second network node; 

the step of establishing the first stream comprises the step of establishing the first 
Java stream after the first process md before the Java secure channel; and 

the step of establishing a second stream comprises the step of establishing the 
second Java stream after the Java secure channel and before the second process. 



31. The communication network of claim 28, wherein: 
the communication channel is a Java secure channel; 
the first stream is a Java stream; 

the second stream is a Java stream 

the method further comprises the step of connecting the Java secure channel to a 
third Java stream; and 

the third Java stream provides for the transmission of data according to a specific 
communication protocol layer. 

32. (Amended) A computer data signal embodied in a carrier wave and 
representing sequences of instructions which, when executed by one or more processor, 
provide communication protocol-independent security for data transmitted between a 
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first node and a second node, by performing the steps of: 

establishing a communication channel between a first network node and a second 
network node; 

establishing a first stream from a first process to the communication channel after 
the establishment of the communication channel, wherein the first stream is encrypted 
after the first process and before entering the communication channel and the encrypted 
first stream is independent of any communication protocol layers; and 

establishing a second stream from the communication channel to a second 
process after the establishment of the communication channel, wherein the second 
stream is decrypted after the communication channel and before entering the second 
process. 

34. (Amended) The computer data signal of claim 32, wherein: 
the first stream is a first Java stream; 
the second stream is a second Java stream; 

the step of establishing a communication channel between the first network node 
and second network node farther comprises the step of establishing a Java secure 
channel between the first network node and second network node; 

the step of establishing the first stream comprises the step of establishing the first 
Java stream after the first process and before the Java secure channel; and 

the step of establishing a second stream comprises the step of establishing the 
second Java stream after the Java secure channel and before the second process. 
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35. The computer data signal of claim 32, wherein: 

the communication channel is a Java secure channel; 
the first stream is a Java stream; 
the second stream is a Java stream 

the method farther comprises the step of connecting the Java secure channel to a 
third Java stream; and 

the third Java stream provides for the transmission of data according to a specific 
communication protocol layer. 
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Attorney Docket No. 06502.0515 

IN THE UNITED STATES PATENT AND TRADEMARK OFFICE 

In re Application of: 

Li GONG 

Application No.: 08/883,636 

Filed: June 28, 1997 

For: LAYER-INDEPENDENT 
SECURITY FOR 
COMMUNICATION CHANNELS 

Commissioner for Patents 
P.O. Box 1450 

i, VA 22313-1450 



Group Art Unit: 2137 
Examiner: Paul E. Callahan 



Sir. 

REQUEST FOR F ILE SEARCH 
Applicant understands that certain papers from the PTO file are now missing and 
that subsequent efforts to find such papers after the relocation of PTO offices have 
failed to turn up the missing papers. In accordance with instructions received by 
Supervisor Andrew Caldwell on November 10, 2004, Applicant hereby submits a 
chronology of papers filed since the mailing of the Final Office Action on September 24, 
2001 , along with stamped copies of the postcards. 

1 . In response to the Final Office Action mailed September 24, 2001 , Applicant filed 
a Notice of Appeal along with a Petition for Extension of Tims for one month on 
January 24, 2002. (Exhibit A.) 

2. Following the Notice of Appeal, Applicants submitted an Appeal Brief on 
March 25, 2002. (Exhibit B.) 



Application No.: 08/883,636 
Attorney Docket No.: 06502,0515 



3. A Change of Customer Number and Correspondence Address and Revocation of 
Power of Attorney and Grant of New Power of Attorney were filed on 
November 21 , 2003. (Exhibit C.) 

4. A duplicate Change of Customer Number and Correspondence Address and 
Revocation of Power of Attorney and Grant of New Power of Attorney were filed 
on December 12, 2003. (Exhibit D.) 

5. Finally, Applicant filed a Status Inquiry on October 6, 2004. (Exhibit E.) 
Applicant respectfully requests that these papers be entered into the file and that 

the Examiner issue a response to the Appeal Brief filed March 25, 2002. 

Please grant any extensions of time required to enter this response and charge 

any additional required fees to our deposit account 06-0918. 

Respectfully submitted, 

FINNEGAN, HENDERSON, FARABOW, 
GARRETT & DUNNER, LLP. 



Dated: November 22, 2004 By:. 
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NOTICE OF APPEAL 



Washington, DC 20231 
Sir: 

Applicant, hereby appeal, to the Board of Appeals fro., the decision dated September 24, 
2001 of the Primary Examiner finally rejecting claim. 1-8, 13-20, 22-24, 26-32, 34, and 35. 

Appeal Fee: $ 320.00 

□ Not required (fee paid in prior appeal in this application). 

g] Charge to Deposit Account No. 50041 7. 

Respectfully submitted, 
MCDERMOTT, WILL & EMERY 



600 13* Street, N,W. 
Washington, DC 2G005-3Q96 
(202)756-8000 DLS:kap 
Bate; January 24, 2002 

: (202)756-8087 
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Group Art Unit: 2132 
■: DJ 



PFT1TIO N FOR EXTE NSION OF TIME 



Commissioner for Patents 

l, DC 20231 



lt is respectMly requested that the time for response to the Office Action dated 
September 24, 2001, now due to expire December 24, 2001, be extended for one (1) 
set to expire on January 24, 2002. 

■ charge the extension fee of $110.00 to Deposit Account No. 500417. 
„ additional fees or credit any overpayment to Deposit Account No, 500417. 
Respectfully s 



MCDERMOTT, WILL & EMERY 



David L. Stewart 

rNo. 37,578 



600 13* Street, N.W. 
Washington, DC 20005-3096 
(202) 756-8000 DLS:kap 
Date: January 24, 2002 

Facsimile: (202) 756-8087 
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In re Application of 
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Serial No.: 08/883,636 
Filed: June 26, 1997 
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Group Art Unit: 2132 
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TRANSMIT TAL Q£ APPEAkgBlEE 



Commissioner for Patents 
Washington, DC 2023.1 



Submitted herewith in triplicate is Appellants) Appeal Brief in support of the Notice of Appeal 
filed January 24, 2002. Please charge the Appeal Brief fee of $320.00 to Deposit Account 500417. 

To the extent necessary, a petition for an extension of time under 37 CP*. 1.136 is hereby 
made. Please charge any shortage in fees due in connection with the filing of this paper, including 
j of time fees, to Deposit Account 500417 and please credit any excess fees to such deposit 



600 13 th Street, N.W. 
Washington, DC 20005-3096 
(202)756-8000 WLStcac 
Facsimile: (202)756-8087 
Date Mareh25,2M2 



Respectfully submitted, 
MCDERMOTT, WILL & EMERY 

Wesley L. Strickland 

nNo. 44,363 
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In re Application of 
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Group Art Unit: 2132 
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For: LAYER-INDEPENDENT SECURITY FOR COMMUNICATION CHANNELS 



APPEAL BRIEF 

Commissioner for Patents 
Washington, DC 20231 

Sir: 

This Brief is submitted pursuant to the Notice of Appeal submitted January 24, 
2002 regarding the final rejection of claims 1-8, 13-20, 22-24, 26-32, 34 and 35 dated 
September 24, 2001, 

REAL PARTY IN INTEREST 
Sim Mfcrosystems,Inc. is the real party in interest in the pending application, 

RELATED APPM LS,ANPJNT1 RF EIPNCES 
No appeal or interference is known to Appellants that will affect or be directly 
affected by or have a bearing on the Board's decision in the pending appeal. There is a 
Petition For Review of A Director's Decision filed July 19, 2001 that is still pending 
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resolution. 



Claims 1-8, 13-20,22-24, 26-32, 34 and 35 remain pending. All the pending 
claims stand under final rejection, from which rejection, this appeal is taken. Claim 29 is 



however, the Office Action Summary identifies claim 29 as rejected and Appellants have 
prepared this Appeal Brief under the assumption that the Examiner's actual intentions with 
regard to claim 29 are reflected by the Summary Sheet. 

STATUS OF AMENDM ENTS 
None of the claims have been Amended after the Final Office Action dated 
September 24, 2001. 

SUMMARY OF INVBjfflOg 
The present invention provides layer-independentsecure communications in a 

nrolti-layered communication network. In general, a communication channel or 

connections first established between a first multi-layered network node and a second 



encrypted and when the encrypted data is read out of the second stream by the 



specifically addressed in the detailed treatment of the claims in the Final Office Action; 





WDC99S77483-1 .050435.0015 



2 



08/883,636 w 

process, the data is decrypted. 

There are several benefits achieved by the claimed invention. These are set forth, 
for example, on pages 2 and 3 of the specification. When the amount of information 
included in session is small, for example, when a session contains only a single message, 
then the overhead contributahleto set up negotiation can adversely affect communications 
performance. This negative is overcome by the claimed invention. Further, some 
communication architectures do not include a session layer, which requires that a session 
layer be added to support session type security, further degrading performance. Layer 
specific encryption can avoid the overhead penalty associated with set up negotiation, but it 
has additional limitations. First, encryption and decryption must occur at the same 
corresponding layer on both the transmitting and receiving network nodes. The traditional 
techniques such as the simple key management for internet protocols (SKIP) and secure . 
sockets layer (SSL) each require layer specific function calls. The result is that one 
application implementing security according to SKIP cannot interact with another 
application implementing security according to SSL. In addition, layer-specific encryption 
could be difficult to employ an object-oriented environments because of the inherent level 
of abstraction required. For example, some layers operate of databytes, which often is a 
much lower level than objects in an object oriented e; 



The following issues are presented by this Appeal, whether the Examiner erred in; 
a) rejecting claims 1, 5, 13, 17, 20, 24, 28, and 32 under 35 USC § 102(e) for 
by Helwig et al (US Patent No. 5,793,749); 
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b) rejecting claims 1, 5, 13, 17, 20, 24, 28, and 32 raider 35 USC § 102(b) for 
anticipation by Sc/weier (Applied Glyptography); and 

c) rejecting claims 2, 3, 4, 6, 7 5 8, 14, 1 5, 1 6, 1 8, 1 9, 22, 23, 26, 27, 30, 31 , 34 and 
35 under 35 USC §1 03 as unpatentable over either Helwig et al. or Schneier. 

GROUPING OF CLAIMS 
Each claim is argued separately and each claim stands or falls independently of any 

other. 

ARGUMENT 

A. The Examiner erred in rejecting claims 1, 5, 13, 17, 20, 24, 2i and 32 as 
anticipated by Helwig etaL 

The factual determination that Helwig et al. identically disclose the claimed 
inventions recited in claims 1, 5, 13, 17, 20, 24, 28, and 32 under 35 USC § 102(e) is' 
erroneous given the differences between the claimed inventions and the system of 
Helwig et al The portion of the specification of Helwig et al relied upon by the 
Examiner refers to and describes Figure 3 and, more particularly, to a "pre-transmit 
processes" within Figure 3. The whole purpose of that particular branch coming off of 
66-Y (in which the pre-transmit process 68 is included) is to record a test message in 
memory. 

The Examiner's rejection is predicated upon an inaccurate factual determination. 
The factual determination of lack of novelty under 35 USC §102 requires the identical 
disclosure in a single reference of each element of a claimed invention such that the 
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identically claimed invention is placed in possession of one having ordinary skill in the 
art. Belfw, Lid. v. Los-Bloc, Ltd. 54 USPQ2d 1299 (Fed. Or. 2000); TD 
Corporation v. Lydall, Inc. 159 FJd. 534, 48 USPQ2d 1321 (Fed. Cir. 1998); 
Electro Medical Systems S.A. v. Coopoer Life Science, Inc., 34 F.3d. 1048 s 32 
USPQ2d 1017 (Fed. Or. 1994). There are significant differences between the invention 
recited in claims 1 , 5, 1 3, 1 7, 20, 24, 28, and 32 and Helwig el alJs system that contradict 
the factual determination that Helwig el al identically describe the claimed invention 
within the meaning of 35 USC §102. 

With respect to claim 1 , there is no teaching or suggestion within Helwig et al. of: 

a) establishing a communications channel in which there is then 
established "a first stream between the first process and the communication channel"; and 

i between the second process and the 

;) encrypting, independent of a transport protocol, data injcsaanssJaJbs 

data being written to the first stream; and 

d) decrypting, independent of the transport protocol, the encrypted data in 
res ponse to the encryp ted data bemgjgadft^^ 

In addition to the features identified above with respect to claim 1 , claim 5 recites a 
rmr^itCT-Kadablemedium. carrying code that when executed performs various functions. 
This requirement of claim 5 is not disclosed by Helwig et al 

In addition to the features identified above with respect to claim ! , claim 1 3 recites 
a rnmpiter data sig nal embo died onawnjawave, representing instructions that when 
executed performs various functions. This requirement of claim 13 is not disclosed by 
Hehrigetal 

With respect to claim 1 7, there is no teaching or suggestion within Helwig et al of: 
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a) establishing a stream betwe en a process andj_corjnrojmication channel; 

and 

b) encrypting data independent of communication protocol layers in 
response to data being written to the stream. 

With respect to claim 20, there is no teaching or suggestion 'm Helwig et al of: 
a) establishing a first stream from a first process t 



b) establishing a second stream from the cqninilMiojl^nggJ to a 
second process, 

In addition to the features identified above with respect to claim 20, claim 24 
recites a computer-readablemedium, carrying code that when executed performs various 
functions. This requirement of claim 24 is not disclosed by Helwig et al 

In addition to the features identified above with respect to claim 20, claim 28 
recites a communications network performing the recited method steps. This requirement 
of claim 28 is not disclosed by Helwig et al 

In addition to the features identified above with respect to claim 20, claim 32 
recites a computer data signal embodied on a carrier wave, representing instructions that 
when executed performs various functions. This requirement of claim 32 is not disclosed 
by Helwig etui. 

The above argued differences between the claimed inventions and the system of 
Helwig et al undermine the factual determination that Helwig el al itoiMIl describe 
the claimed inventions within the meaning of 35 USC §1 02, Kalsier Speeded AB v. 
Crucible, Idc 793 F,2d !565 $ 230 USPQ 81 (Fed. Cir. 1986). Thm, the E»mincr 
has failed to establish a prima facie case of anticipation. Appellants, therefore, 
respectfully submit that each the imposed rejection of claims 1,5,13,17, 20, 24, 28 and 
6 
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32 under 35 USC §102 for lack of novelty, as evidenced by HeMg et al, are 
independently factually erroneous. 



r erred in rejecting claims 1, 5, 13, 17, 20, 24, 28 and 32 as 
r. 

The Examiner erred in rejecting claims 1,5,13,17, 20, 24, 28, and 32 under 35 
USC §102(b) as anticipated by Schmier (Applied Cryptography). The factual 
determination that Schmier identically disclose the claimed inventions recited in c 
1 , 5 S 1 3, 1 7, 20, 24, 28, and 32 under 35 USC § 1 02(b) is erroneous given the d 
between the claimed inventions and the system of Schneier. Schmier describes an XOR 
encryption process, known as a stream cipher, with its corresponding decryption process. 
With respectto all the claims, this discussion of a ciphering model by Schneier does not 
e (or even suggest) establishment of a communications channel followed by 
rocess and the channel and another stream from the 
, Thus, the Examiner has failed to establish & prima facie 

case of anticipation. 

With respect to claim 1 , there is no teaching or suggestion within Schneier of: 

a) establishing a communications channel in which there is then 
established "a first stream between the first process and the communicationchanner; and 

b) "establishing a second stream between the second process and the 
communication channel"; and 

c) encrypting, independent of a transport protocol, data inres^ojMetc^ 
databeiog written to th e fi rst strea m ; and 

d) decrypting, independent of the transport protocol, the encrypted data in 
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respons e to the encry pted data bem& read form the second & gam- 

In addition to the features identified above with respect to claim 1 , claim 5 r 
computer-readablernedium., carrying code that when executed performs various functions. 
This requirement of claim 5 is not disclosed by Schmier. 

In addition to the features identified above with respect to claim 1, claim 13 recites 
a computer data signal embodied on a carrier wave, representing instructions that when 
executed performs various functions. This requirement of claim 13 is not disclosed by 

With respect to claim 1 7, there is no teaching or suggestion within Schmier of: 

a) establishing a stream between a pro^gs^ ^ ch g nnej; 

and 

b) encrypting data independent of communication protocol layers in 
response to data being written to the stream. 

With respect to claim 20, there is no teaching or suggestion in Schmier of: 

a) establishing a first stream from a first process to the communication, 

channel ; and 

b) establishing a second stream f^siMsmm»S^m^SSM «> » 

second process. 

In addition to the features identified above with respect to claim 20, claim 24 
recites a computer-readablemediuin, carrying code that when executed performs various 
s.This requirement of claim 24 is not disclosed by Schmier. 
In addition to the features identified above with respect to claim 20, claim 28 
s a communications network performing the recited method steps. This requirement 
of claim 28 is not disclosed by Schmier 

In addition to the features Identified above with respect to claim 20, claim 32 
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recites a computer data signal embodied on a carrier wave, representing instructions that 
when executed performs various tactions. This requirement of claim 32 is not disclosed 
by Schneier 

The above argued differences between the claimed inventions and the system of 
Sctmeier undermine the factual determination that Schneier identically describe the 
claimed inventions within the meaning of 35 USC §102. Kolster Speedsteel AB v. 
Crucible, Inc., 793 F.2d 1565, 230 USPQ 81 (Fed, Cir. 1986). 

Thm, the Examiner has failed to establish a prima feck case of anticipation. 
Appellants, therefore, respectfully submit that each the imposed rejection of claims 1,5, 
1 3 3 1 7, 20, 24, 28 and 32 under 35 USC § 1 02 for lack of novelty, as evidenced by 
Schneier, are independently factually e 



C The factual determination that either Helwig et at or Schneier identi 

ose"(or even suggest) . "strW « meant »d recited in SM of the pre**. 
M is erroneous when the appropriate disclosures are considered as a who 
:h internal consistency and from the perspective of one of 



Neither Helwiget at nor Schneier teach or suggest the use of a "stream" as that 
a was used or applied in the specification and claims of the present application. 



Helwig et 61 does refer to a "data stream" However, the use of similar sou ndin g 
terms is not necessarily the same as using terms that mean the same thing. Therefore, the 
mere use of similar sounding terms does not end the inquiry into whether a reference can 
beconsideredasidenticaSlydisclosingthesamesubjectmatter. The meaning of "data 
streams" in Helwig et al is interpreted in the context of that specification and v 
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Heiwig el al the "data streams" are a series of bits output from a vocoder and are used as a 
description of the data's particular physical format. 

In contrast to the interpretation as meant by Heiwig et al, the present claim term 
"stream" is to be interpreted in light of the claim language, the specification, and the 
prosecution history; and the interpretation proceeds from the vantage point of one skilled 
in the art, Atlantic Thermoplastics Co., Inc. V. Faytex Corp., 970 F.2d 834, 23 
USPQ2d 1481 (Fed. dr. 1992); Hnynei International, Inc. v. Jessop Sled Co., 8 
F 3d 1573, 28 USPQZd 1652 (Fed. Cir. 1993). Ultimately, claim language is construed 
according to the standard of what those words would have meant to one skilled in the art 
as of the application date. Weiner v. NEC Electronics, Inc., 102 F3d 534, 41 
USPQ2d 1023 (Fed. Cir. 1996). 

It is important* interpret the phrase "stream" within the claims in a way which is 
consistent with the specification,rathcr than at odds to it. For example, one would 
obviously not interpret "stream" in the context of this application as referring to a flow of 
water down a mountain side. On page 4 of the specification, beginning line 9, the 
applicationintroducesa "stream" as an abstraction wbichrefersto the transferor "flow" of 
data, in any format, from a single source, to a single destination. Let us consider the 
following example in the context of Figure 1 of the application. Let us assume that process 
] 08 is an MPEG2 transmission process. It may generate a plurality of "streams", such as a 
left channel andio, a right channel audio, a video, a closed-captioned stream, and a control 
channel stream. When the MPEG2 transmission process 1 08 desires to send information to 
process 1 1 0, which, in this example, is an MPEG2 display process, a c 
■channel would be set up between node 1 08 and node 1 04 then, the individual St 



WDC99 5774I3-1.OS0433.OOIS 



10 



08/883,636 

would be applied to the commnnicationschannel for transmission to the node 104, Note 
that the communication channel from the process 1 08 goes through all of the layers shown 
in Figure 1 of each protocol stack, namely the application layer, presentation layer, session 
layer, transport layer, network layer, datalink layer, and physical layer before going across 
the transmission medium to the other node and then passing through the same layers as an 
inverse order, It is known in the art to apply layer specific encryption at any of the layers 
of the OS! reference model shown in Figure ]. 

If the invention of claim 1 were applied to a communication system which 
corresponded to the OSI reference model, first, communications would be established 
between the first network node and the second network node. The request for connection 
would come from the process 1 08 to the application layer and appropriately process 
through the layers until a connection is set up to node 1 04. Once that is done, a first 

,y, for example, an MPEG control channel stream is established between the first 
s 1 08 and the communications channel which begins at application layer 1 1 8. At the 
other end, a stream would be established between the application layer 128 of node 104 
and the process 1 1 0 for the MPEG control channel data. As set forth in limitation d) of 
claim 1 , in response to data being written to the first stream [from process 108] the data is 
encrypted to generate encrypted data which is then applied to the application layer 1 1 8. 
The encryption is performed independently of any of the layers of the communications 
protocol stack, Note that in the example of MPEG2, encryption can be applied selectively 
to the streams rather than to everything that is transmitted over the communications 
channel. In OSI reference model, the layer normally responsible for encryption is the 
presentationlayer while the application layer, 1 1 8, handles the interface between the 
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software involved with the process 1 08 and the communications channel. 

One limitation of claim 1 states "in response to the encrypted data being read from 
the second stream, decrypting the encrypted data to recover the decrypted data." 

As used within the present application, "stream" is an abstraction, which has 
properties beyond merely being a string of binary digits. "Streams", as would be 
understood by a skilled software practitioner, are defined in object oriented languages such 
as Java and have a whole set of associated properties which distinguishthern from a flow 
of water down the mountain side and which also distinguishthern from simply an axbitraiy 
string of binary Fs and Vs. 



Schneier: 

With regards to Schneier, the referenced portion (Section 9.4) of his book 
Applied Cryptography describes a cipher model known as "Stream Ciphers". In 
particular, the Examiner relies of Figure 9.6 as anticipating the present claims. So, 
similar to Helwig et. al, Schneier also uses a similar sonnding term - "stream cipher"; 
but, once again, the inquiry is not whether similar sounding terms ate being used but 
whether the terms being used convey an identical disclosure of subject matter as required 
under 35 USC§102. 

The following information from Hitter's Crypt® Glossary as*d Dictionary of 
Technical Cryptography (Current Edition: 2002 Feb 18. which can be found at, for 
example, http://ww^%ciphersbyritterxorn/GLOSSARY.HTM)provide S a helpful context 

The glossary has a heading of "Cipher Taxonomy" which includes the following 
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PLQOCCJPHER 

A block cipher requires the accumulation of some amount of data or 
multiple data elements for ciphering to complete. (Sometimes stream 
ciphers accumulate data for convenience, as in cylinder ciphers, which 
nevertheless logically cipher each character independently.) 

A stream cipher does not need to accumulate some amount of data or 
multiple data elements for ciphering to complete, (Since we defme 
only two main "types" of cipher, a stream cipher is the opposite of a 
block cipher and vise versa. It is extremely important that the 
definitions for block and stream ciphering enclose the universe of all 
possible ciphers.) A stream cipher has the ability to transform 
individual elements one-by-one. The actual transformation usually is a 
block transformation, and may be repeated with the same or different 
keying. 

A later heading in this Glossary that relates to a "Stream Cipher" further agrees 

with the specific XOR implementation of Schnekr by describing a stream cipher as: 

a cipher which directly handles messages of arbitrary size by ciphering 
individual data elements, such as bits or bytes or characters.. 
Conventionally, some form of keyed random number generator is used to 
produce a confusion sequence or running key. That sequence is then 
combined with plaintext data by exclusive-OK to produce ciphertext. 
Enciphering individual characters allows ciphering to begin immediately, 
avoiding the need to accumulate a full block of data before ciphering, as is 
necessary in a conventional block cipher. But note that a stream cipher can 
be seen as an operating mode, a "streaming" of a tiny block 
transformation. Stream ciphers can be called "combiner-style" ciphers. 
Also see: a cipher taxonomy. 

Appellants urge that the high-level discussion of a stream ciphering model by 
Schmier does not provide the requisite identical disclosure of the "stream" abstraction as 
intended and used in the present specification and claims. 

Thus, the Examiner has failed to establish a prima facie case of anticipation of the 



08/883,636 W 

claims when the claims, Schnekr and Helwig et al. are all properly interpreted, because 
such an interpretation reveals that neither of the references identically disclose the 
"stream" recited in the claims. 

D The Examiner erred In rejecting claims 3, 4, 7, 8, IS, 16, 18, 19, 22, 23, 
26, 27, 29, 30, 31, 34, m$ 35 as unpatentable over either Helwig et aL or Sctaeier, 

Claims 3, 4, 7, 8, 15, 16, 1 8, 19, 22, 23, 26, 27 [and 29], 30, 31, 34 mid 35 are not 

obvious over either Helwig et aL or Schneier because neither of these references teach or 

other wise suggest a Java-based stream or communication channel and, thus, the 

Examiner did not discharge the initial burden of establishing a prima facie basis to deny 

y to the claimed invention under 35 USC §103. 

In applying these references to the claims, the Examiner states: 

"They do not say that the communication channels or data streams are ^va-based 
Official notice is taken that it is old and well-taown that Java is intended for 
networked/distributed environments and enables the construction of virus-tree, 
tamper-free systems. Therefore it would have been obvious to a person of ordinary 
skill in the art at the time the invention was made to base the systems of Schnewr or 
Helwig el a! , ail of which are networked or distributed environments, on Java, as is 
biown in the art. This would enable the implementation of a virus-free, frmneru 
free s 



The initial burden of establishing aprima facie basis to deny patentability to a 
claimed invention under any statutory provision always rests upon the Examiner. In re 
Mayne, 41 USPQ2d 1451 (Fed .Cir. 1997); In re De^el, 34 USPQld 1210 (Fed, Or. 
1995); In re Bell, 26 USPQ2d 1529 (Fed. Or. 1993); In re Oetiker, 24 USPQld 1443 
(Fed. Cir. 1992). In rejecting a claim under 35 U.S.C. § 1 03, the Examiner is required 
to provide a factual basis to support the obviousness conclusion. In re Warner, 154 
USPQ 173 (CCPA 1967); In re Word, 148 USPQ 721 (CCPA 1966); Id re Fred, 
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j 65 USPQ 570 (CCPA 1970). The Examiner is required to show that all the claim 
limitations are taught or suggested by the references along with some motivation to 
combine the teachings of the references. In re Royka, J 80 USPQ 580 (CCPA 1974)? 
In re Wilson, .165 USPQ 494 (CCPA 1970). 

In addition, it has been repeatedly held by the Court of Appeals for the Federal 
Circuit that in order to establish the requisite realistic motivation, the Examiner must 
make "clear and particular" factual findings as to a specific understanding or specific 
technological principle which would have realistically impelled one having ordinary skill 
in the art to modify a particular prior art device (the device of either Schneier or Helwig 
et al.) to arrive at the claimed invention based upon facts-not generalizations. Ruiz v. 
A.B. Chance Co., 234 F.2d 654, 57 USPQ2d 1161 (Fed. Or. 2000); Ecolochem Inc. 
v. Southern California Edison, Co. 227 F3d 361, 56 USPQ2d 1065 (Ted, Cir. 
2000); In re Koteab, 217 F.3d 1365, 55 USPQ 1313 (Fed, Cir. 2000); In re 
Dembiesak, 175 F.3d 994, 50 USPQ2d 1614 (Fed. Cir. 1999). Moreover, the 
Examiner is required to explain why one having ordinary skill in the art would have been 
realistically led to modify the devices of either Schneier or Helwig et al to arrive at the 
claimed invention. Ecolochem Inc. v. Soother® California EdisoB, Co. supra.; In re 
Rouffet, 149 FJd 1350, 47 USPQ2d 1453 (Fed. Cir. 1998). Significantly, the requisite 
motivation must be undertaken with a reasonably expectation of successfully achieving 
the objective of either Schneier or Helwig et al In rc Vneek, 947 F.2d 488, 20 USPQ2d 
1438 (Fed. Cir. 1991). 

Appellant would heavily rely upon the legal tenet that regardless of what the 
Examiner perceives as the source of motivation in the prior art, the Examiner must 
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provide "a convincing discussion of the specific sources of the motivation to combine 
the prior art references...". Ecolocbem Inc. v. So.ta California EdisoB, Co. 227 
F.3d 1361, 56 USPQ2d 1065 (Fed. Cir. 2000). This basis legal tenet was recently 
enforced by the Court of Appeals for the Federal Circuit in In re Lee _F.3d _ s 
6lUSPQ2d 1430 (Fed. Cir. 2002), wherein the Court emphasized that the motivational 
t is a factual question which requires substantial evidence-not conclusory 



Appellants continue to insist that the range and content of the Examiner's Official 
Notice is factually and legally erroneous. But, assuming for the sake of argument that 
the Official Notice was effective for what the Examiner asserts, Appellants urge that the 
requirements of 35 USC §103 have still not been satisfied. The Examiner has failed to 
provide a cogent explanation of why one of ordinary skill would have been motivated to 
modify the message storing device of to Helwig et al. to add, for example, the 
complexity, additional hard ware and cost of Java processing capability in the first place. 
Additionally, the Examiner has failed to provide a cogent explanation of why one of 
ordinary skill would have been motivated to augment the general discussion of 
enciphering and deciphering models by Schneier to specifically involve Java and Java 
streams. The Examiner states that Java "enables construction of virus-free, tamper-free 
systems". This type of generalization about technology is exactly the danger of which 
the courts have repeatedly warned against and the type of reasoning which the courts 
have repeatedly found erroneous. The establishment of a prima facie case of 
obviousness must factually explain why one of ordinary skill would have been motivated 
to combine specific teachings, in a specific way in order to arrive at a specific invention. 
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The Examiner's Official Notice (even if true) that Java might have use in tamper-free 
systems, is not a factual explanation of why a skilled artisan would have found it obvious 
to modify the specific systems taught by Schneier or Helwig et al with some reasonable 
expectation of success. 

If the Examiner were to implement the Schneier or Helwig etal. systems, using 
Java streams and Java secure channels, it would still not result in the claimed invention. In 
fact, if the phrases "communication channel" and "stream" as used in each of the references 
are interpreted to be a "Java stream" and "Java secure communication channel," the 
interpretation of the references as applied to the independent claims would have to change 
so dramatically as to show their inapplicability under 35 USC §102. 

Appellants urge that the Examiner committed clear factual and legal errors. 
Specifically, without the benefit of any facts, the Examiner expanded the teachings of the 
applied references to whatever level he needed in order to combine them, relying only 
upon his "official notice" ability, in complete violation of Ex parte Stem, 13 USPQ2d 
1379 (BPAI 19S7). 

Appellants recognize that the specific limitations recited in the different 
"families" of dependent claims appear to be very similar. However, as the patentability 
of each of the independent claims was separately argued, Appellants wish to stress that 
the dependent claims also stand or fall individually and are not being grouped together. 

With respect to claim 3, the claim recites a first Java stream, a second Java stream, 
and a Java secure channel These requirements of claim 3 are not disclosed or s 
by cither Helwig et al or Schneier. 

With respect to claim 4, the claim recites a first Java stream, a second Java s 
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a third Java stream, and a Java secure channel. These requirements of claim 4 are not 
disclosed or suggested by either Helwig et al or Schneier. 

With respect to claim 7, the claim recites a first Java stream, a second Java stream, 
and a Java secure channel. These requirements of claim 7 are not disclosed or suggested 
by either Helwig et al or Schneier. 

With respect to claim 8, the claim recites a first Java stream, a second Java stream, 
a third Java stream, and a Java secure channel. These requirements of claim 8 are not 
disclosed or suggested by either Helwig et al. or Schneier. 

With respect to claim 1 5, the claim recites a first Java stream, a second Java stream, 
and a Java secure channel. These requirements of claim 1 5 are not disclosed or suggested 
by either Helwig et al. or Schneier. 

With respect to claim 1 6, the claim recites a first Java stream, a second Java stream, 
a third Java stream, and a Java secure channel These requirements of claim 1 6 are not 
disclosed or suggested by either Helwig et al or Schneier. 

With respect to claim 1 8, the claim recites a first Java stream and a Java secure 
channel These requirements of claim 1 8 are not disclosed or suggested by either Helwig 
et al or Schneier. 

With respect to claim 1 % the claim recites a first Java stream, a second Java stream, 
and a Java secure channel. These requirements of claim 1 9 are not disclosed or suggested 
by either Helwig et al or Schneier. 

With respect to claim 22, the claim recites a first Java stream, a second Java stream, 
and a Java secure channel These requirements of claim 22 are not disclosed or suggested 
by either Helwig et al or Schmier. 
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With respect to claim 23, the claim recites a first Java stream, a 
a third Java stream, and a Java secure channel. These requirements of claim 23 are not 
disclosed or suggested by either Helwig et al. or Schmier. 

With respect to claim 26, the claim recites a first Java stream, a second Java stream, 
and a Java secure channel, These requirements of claim 26 are not disclosedor suggested 
by either Helwig et al or Schneier. 

With respect to claim 27, the claim recites a first Java stream, a second Java stream, 
a third Java stream, and a Java secure channel. These requirements of claim 27 are not 
disclosed or suggested by either Helwig et al or Schmier. 

With respect to claim 29, the claim recites that the encryption of the first stream and the 
decryption of the second stream is specific to a communication protocol layer. This 
requirement of claim 29 is not disclosed or suggested by either Helwig et al or Schneier. 

With respect to claim 30 5 the claim recites a first Java stream, a second Java 
stream, and a Java secnre channel. These requirements of claim 30 are not disclosed or 
suggested by either Helwig et al. or Schneier. 

With respect to claim 31, the claim recites a first Java stream, a second Java stream, 
a third Java stream, and a Java secure channel These requirements of claim 3 1 are not 
disclosed or suggested by either Helwig et al or Schneier. 

With respect to claim 34, the claim recites a first Java stream, a second Java stream, 
and a Java secure channel. These requirements of claim 34 are not disclosed or suggested 
by either Helwig et al or Schneier. 

With respect to claim 35, the claim recites a first Java stream, a second Ji 
a third Java stream, and a Java secure channel. These requirements of claim 35 are n 
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disclosed or suggested by either Helwig et ah or Schmier, 

The above argued differences between the claimed inventions and the system of 
Helwg ei at and Schmier underline the factual determination that Helwig et al and 
Schmier provide a prima facie case of obviousness within the meaning of 35 USC §103 
of claims 3 S 4, 7, 8, 1 5, 1 6, 1 8, 19, 22, 23, 26, 21, 30, 31 , 34 and 35 

E. The Examiner erred m rejecting claims 2, 6, and 14 as unpatentable over 
either Helwig et al. or Schneier. 

Claims 2, 6 3 and 14 are not obvious over either Helwig et al or Schneier because 
neither of these references teach or other wise suggest performing communication 
protocol layer specific encryption or decryption of the data and, thus, the Examiner did 
not discharge the initial burden of establishing a prima facie basis to deny patentability 
to the claimed invention under 35 USC §103. 

In rejecting these claims, the Examiner asserts that if some encryption is good, 
then more encryption is better. Appellants admit that some liberty was taken with 
paraphrasing the Examiner's comments; however, if read carefully, his assertions really 
do not say anything more than the above generalization. As stated previously, the 
Examiner must make "clear and particular" factual findings as to a specific 
understanding or specific technological principle which would have realistically 
impelled one having ordinary skill in the art to modify a particular prior art device (the 
device of either Schneier or Helwig ei al) to arrive at the claimed invention based upon 



Each of claims 2, 6 and 14 require more than simply a second encryption step. 
The claims recite that the encryption being performed be "a communication protocol 
20 
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layer specific encryption." The Examiner has not explained why a skilled artisan, with 
either Schneier or Helwig et al. in hand, would have found it obvious to add to the 
respective systems a communication layer protocol specific encryption. Schneier does 
not disclose a stream cipher in the context of networked nodes communicating over a 
channel and Helwig et al is concerned about storing a message, not with secure 
communications. Additionally, Helwig et al discusses the need for responsiveness in 
their system and one skilled in the art would not have adversely impacted performance in 
such a system by adding another layer of encryption processing. Accordingly, the 
Examiner's generalization might indicate that employing multiple layers of encryption 
was known and even that protocol specific encryption was known. However, these 
conclusions fall far short of establishing a prima facie case of obviousness under 35 USC 
§103. The Examiner has failed to provide a fact-based rationale why one of ordinary 
skill would have been motivated to modify specifically Schneier or Helwig et al with a 
second encryption/decryption step and why that skilled artisan would have performed the 
encryption/decryption as being protocol layer specific. 

The lack of a fact-based explanation for expanding the teachings of Helwig et al 
and Schneier undermine the factual determination that Helwig et al and Schneier 
provide a prima facie case of obviousness within the meaning of 35 USC §103 of claims 
2, 6, and 14, 
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F. Claims 2, 3, 4, 6, 7, 8, 14, 15,56,18, 19, 22, 23, 26, 27 (and 29], 30, 31, 34 
and 35 are not obvioui over either Helwig et al or Schneier because neither of these 
s anticipate the respective Independent claims from y 



depend and, thus, the Examiner did not discharge the Initial bard™ of i 
a prima fade basis to deny patentability to the claimed invention under 35 USC 
§103, 

In rejecting the dependent claims, the Examiner relies on either Helwig et al or 
Schneier as applied to ihe independent claims and then asserts, through "Official Notice- 
that the specific features in the dependent claims are well-known. 

As argued above, neither of the applied references disclose all the features of the 
independent claims - features which are incorporated into respective dependent claims. 
Accordingly, for the reasons presented above, with regard to the independent claims, 
neither reference discloses or suggests every feature recited in the dependent claims. 

Neither Schneier nor Helwig et al, therefore, provide the factual ba 
properly establish a prima fade case of obviousness under 35 USC §103. 



QQNGyJSJOH 

Fox the reasons advanced above, the Examiner's factual determination that 
Schneier identically describes the claimed inventions of claims 1, 5, 13, 17, 20, 24, 28 
and 32, within the meaning of 35 USC §102, is erroneous. For the reasons advanced 
above, the Examiner's factual determination that Helwig et a!, identically describe the 
claimed inventions of claims 1, 5, 13, 17, 20, 24, 28 and 32 s within the meaning of 35 
USC §102, is erroneous. Appellants, therefore, respectfully solicit the Honorable Boar 
to reverse each of the Examiner's rejections. 
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For the reasons advanced above. Appellants submit that the Examiner did not 
establish a prima facie basis to deny patentability to any of the claims on Appeal under 
35 USC §103. Appellants, therefore, respectfully solicit the Honorable Board to reverse 
each of the Examiner's rejections under 35 USC §103. 

To the extent necessary, a petition for an extension of time under 37 C.F.R, 1 J 36 is 
hereby made. Please charge any shortage in fees due in connection with the filing of this 
paper, including extension of time fees, to Deposit Account 50-0417 and please credit any 
excess fees to such deposit account. 

Respectfully submitted, 
MCDERMOTT, WILL & EMER^ 

Wesley L. Strickland 
Registration No. 44,363 

600 13* Street, N.W. 
Washington. DC 20005-3096 
(202)756-8000 WLS:cac 
Dates March 25, 2002 
Facsimile: (202) 756-8087 
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APPENDIX 

1. (Twice Amended) A method for providing communication protocol layer 
independent security for data transmitted between a first process, executing on a first 
network node, and a second process, executing on a second network node, wherein the 
first network node and the second network node each support at least one common 
communication protocol layer, the method comprising the steps of: 

establishing a communication channel between the first network node and 
the second network node; 

establishing a first stream between the first process and the 
communication channel; 

establishing a second stream between the second process and the 
communication channel: 

in response to the data being written to the first stream, encrypting the 
data to generate encrypted data, the encrypting of the data being performed independent 
of any communication protocol layers used to transport the encrypted data from the first 
network node to the second network node; 

causing the encrypted data to be transmitted from the first network node 
to the second network node according to the at least one communication protocol layer 
supported by the first and second network nodes; and 

in response to the encrypted data being read from the second stream, 
decrypting the encrypted data to recover decrypted data which is identical to the data on 
the first network node before the data was written to the first stream, the decrypting of 
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the encrypted data being performed independent of any communication protocol layers 
used to transport the encrypted data from the first network node to the second network 
node. 

2. (Thrice Amended) The method of Claim 1 , further including the steps of 

performing a communication protocol layer specific encryption of the 
data on the first network node, and 

performing a communication protocol layer specific decryption of the 
data on the second network node. 

3. The method of Claim I, wherein the communication channel is a Java secure 



wherein the first stream is a first Java stream, 
wherein the second stream is a second Java stream, 

wherein the step of establishing a communication channel between the first and 
second network nodes further comprises the step of establishing a Java secure channel 
between the first and second network nodes, 

wherein the step of establishing a first stream between the first process and the 
communication channel further comprises the step of establishing a first Java stream 
between the first process and the lava secure channel, and 

wherein the step of establishing a second stream between the second process and 
the communication channel further comprises the step of establishing i 
n between the second process and the Java secure channel . 
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4. (Twice Amended) The method of Claim I, wherein the communication 
channel is a Java secure channel, wherein the first stream is a Java stream, 

wherein the second stream is a Java stream, 

wherein the method farther comprises the step of connecting the Java secure 
channel to a third Java stream, and 

wherein the third Java stream provides for the transmission of data according to a 
specific communication protocol layer. 

5, (Twice Amended) A computer-readable medium carrying one or more 
sequences of one or more instructions for providing communication protocol layer 
independent security for data transmitted between a first process, executing on a first 
network node, and a second process, executing on a second network node, wherein the 
first network node and the second network node each support at least one common 
communication protocol layer, the one or more sequences of one or more instructions 
including instructions which, when executed by one or more processors, cause the one or 
more processors to perform the steps of: 

establishing a communication channel between the first network node and the 
second network node; 

establishing a first stream between the first process and the communication 

channel; 

establishing a second stream between the second process and the communication 
channel; 

in response to the data being written to the first stream, encrypting the data to 
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generate encrypted data, the encrypting of the data being performed independent of any 
communication protocol layers used to transport the encrypted data from the first 
network node to the second network node; 

causing the encrypted data to be transmitted from the first network node to the 
second network node according to the at least one communication protocol Saver 
supported by the first and second network nodes; and 

in response to the encrypted data being read from the second stream, decrypting 
the encrypted data to recover decrypted data which is identical to the data on the first 
network node before the data was written to the first stream, the decrypting of the 
encrypted data being performed independent of any communication protocol layers used 
to transport the encrypted data from the first network node to the second network node. 

6, (Twice Amended) The computer-readable medium of Claim 5, wherein the 
computer-readable medium further includes instructions for performing the steps of 

performing a communication protocol layer specific encryption of the data on the 
first network node, and 

performing a communication protocol layer specific decryption of the data on the 



7. The computer-readable medium of Claim 5, wherein the first stream is a first 
wherein the second stream is a second Java stream, 

wherein the step of establishing a communication channel between the first and 
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second network nodes further comprises the step of establishing a Java secure channel 
between the first and second network nodes, 

wherein the step of establishing a first stream between the first process and the 
communication channel further comprises the step of establishing a first Java stream 
between the first process and the Java secure channel, and 

wherein the step of establishing a second stream between the second process and 
the communication channel further comprises the step of establishing a second Java 
stream between the second process and the Java secure channel, 

8. (Amended) The computer-readable medium of Claim 5, wherein the 
communication channel is a Java secure channel, 

wherein the first stream is a Java stream, 

wherein the second stream is a Java stream, 



connecting the Java secure channel to a third Java stream, and 

wherein the third Java stream provides for the transmission of data according to a 
specific communication protocol layer. 

13, (Twice Amended) A computer data signal embodied in a carrier wave and 
representing sequences of instruction which, when executed by one or more processors, 
provide communication protocol layer independent security" for data transmitted between 
a first process, executing on a first network node, and a second process, executing on a 
second network node, according to at least one common communication protocol layer 




medium further includes instructions for 
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supported by the first and second network nodes, by performing the steps of: 

establishing a communication channel between the first network node and the 

second network node; 

establishing a first stream between the first process and the communication 



establishing a second stream between the second process and the communication 



in response to the data being written to the first stream, encrypting the data to 
e encrypted data, the encrypting of the data being performed independent of any 
communication protocol layers used to transport the encrypted data from the first 



I the encrypted data to be transmitted from the first network node to the 
second network node according to the at least one communication protocol layer 
supported by the first and second network nodes; and 

in response to the encrypted data being read from the second stream, decrypting 
the encrypted data to recover decrypted data which is identical to the data on the first 
network node before the data was written to the first stream, the decrypting of the 
encrypted data being performed independent of any communication protocol layers used 
1 the encrypted data from the first network node to the s 



(Twice Amended) The computer data signal of Claim 13, wherein the 
of instructions further includes instructions for performing the steps 
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performing a communication protocol layer specific encryption of the data on the 
first network node, and 

performing a communication protocol layer specific decryption of the data oio the 
second network node, 

15. The computer data signal of Claim 13, wherein the first stream is a first Java 



wherein the second stream is a second Java stream, 
wherein the step of establishing a communication channel between the first and s 
network nodes farther comprises the step of establishing a Java secure chanj 
the first and second network nodes, 

wherein the step of establishing a first stream between the first process md the 
communication chaise! further comprises the step of establishing a first Java stream 
between the first process and the Java secure channel, 

wherein the step of establishing a second stream between the second process and 
the communication channel father comprises the step of establishing a second Java 
n between the second process and the Java secure channel. 



16. (Amended) The computer data signal of Claim 13, 
communication channel is a Java secure channel, 

wherein the first stream is a Java stream, 

wherein the second stream is a Java stream, 

wherein the computer sequence of instructions further includes instructions for 
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connecting the Java secure channel to a third Java stream, and 

wherein the third Java stream provides for the transmission of data according to a 
specific communication protocol layer. 

17, (Amended) A method for providing communication protocol layer 
independent security for data transmitted by a process executing on a network node, the 
method comprising the steps of: 

a) establishing a stream between the process and a communication channel; 

and 

b) in response to the data being written to the stream, encrypting the data to 
generate encrypted data, the encrypting of the data being performed independent of any 
communication protocol layers used to transport the encrypted data on the 



1 8, (Amended) The method of Claim 1 7, wherein the communication channel is a 
Java secure channel, 

wherein the stream is a first Java stream., and 

wherein the step of establishing a stream between the process and the 
communication channel further comprises the step of establishing a Java stres 
the process and the Java secure channel . 



] 9. (Amended) The method of Claim 1 7, wherein the communication channel is a 
Java secure channel, wherein the stream is a Java stream, 
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wherein the method further comprises the step of connecting the Java secure 
channel to a second Java stream, and 

wherein the second Java stream provides for the transmission of \ U according 
to a specific communication protocol layer. 

20. (Amended) A method for providing communication protocol-independent 
security for data transmitted between a first node and a second node, the ; 
g the steps of: 

establishing a communication channel between a first network node and a s 



establishing a first stream from a first process to t: 
the establishment of the communication channel, wherein the first stream is encrypted 
after the first process and before entering the communication channel and the encrypted 
first stream is independent of any communication protocol Savers; and 

establishing a second stream from the communication channel to a second 



process after the establishment of the communication channel, wherein the 
stream is decrypted after the communication channel and before entering the second 



22. (Amended) The method of claim 20, wherein: 
the first stream is a first Java stream; 
the second stream is a second Java stream; 

the step of establishing a Gommnnieation channel between the first network node 
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and second network node farther comprises the step of establishing a Java secure 

channel between the first network node and second network node; 

the step of establishing the first stream comprises the step of establishing the first 
Java stream after the first process and before the Java secure channel; and 

the step of establishing a second stream comprises the step of establishing the 
second Java stream after the Java secure channel and before the second process. 



23. (Amended) The method of claim 20, wherein: 
the communication channel is a Java secure channel; 

the first stream is a Java stream; 

the second stream is a Java stream; 

the method further comprises the step of connecting the Java secure channel to a 
third Java stream; and 

the third Java stream provides for the transmission of data according to a specific 
communication protocol layer. 

24. (Amended) A computer-readable medium carrying one or more sequences of 
one or more instructions for providing communication protocol-layer independent 
security for data transmitted between a first node and a second node, the one or more 
sequences of one or more instructions including instructions which, when executed by 
one or more processors, cause the one or more processors to perform the steps of: 

establishing a communication channel between a first network node and a second 
network node; 
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establishing a first stream from a first process to the 
the establishment of the communication channel, wherein the first stream is encrypted 
after the first process and before entering the communication channel and the encrypted 
first stream is independent of any communication protocol layers; and 

establishing a second stream from the communication channel to a second 
process after the establishment of the communication channel, wherein i 
i is decrypted after the communication channel and before entering t 



26. (Amended) The computer-readable medium of claim 24, < 
the first stream is a first Java stream; 
the second stream is a second Java stream; 

the step of establishing a communication channel between the first n 
and second network node farther comprises the step of establishing a Java secure 
channel between the first network node and second network node; 

the step of establishing the first stream comprises the step of establishing the first 
Java stream after the first process and before the Java secure channel; and 

the step of establishing a second stream comprises the step of establishing the 
i Java stream after the Java secure channel and before the second process. 



27. The method of claim 24, wherein: 
the communication channel is a Java secure channel; 
the first stream is a Java stream; 
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the second stream is a Java stream 

the method further comprises the step of connecting the Java secure channel to a 
third Java stream; and 

the third Java stream provides for the transmission of data according to a specific 
communication protocol layer. 

28, (Amended) A communications network providing communication protocol- 
independent security for data transmitted between a first node and a second node, the 
communication network performing the steps of: 

establishing a communication channel between a first network node and a second 
network node; 

establishing a first stream from a first process to the communication channel after 
the establishment of the communication channel, wherein the first stream is encrypted 
alter the first process and before entering the communication channel and the encrypted 
first stream is independent of any communication protocol layers; and 

establishing a second stream from the communication channel to a second 
process after the establishment of the communication channel, wherein the second 
stream is decrypted after the communication channel and before entering the second 
process. 

29. The communication network of claim 28, wherein the encryption of the first 
stream and the decryption of the second stream is specific to a communication protocol 
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30. (Amended) The communication network of claim 28, wherein: 

the first stream is a first Java stream; 

the second stream is a second Java stream; 

the step of establishing a communication channel between the first network node 
and second network node further comprises the step of establishing a Java secure 
channel between the first network node and second network node; 

the step of establishing the first stream comprises the step of establishing the fire! 
Java stream after the fust process and before the Java secure channel; and 

the step of establishing a second stream comprises the step of establishing the 
second Java stream after the Java secure channel and before the second process. 



31. Hie communication network of claim 28, wherein: 
the communication channel is a Java secure channel; 
the first stream is a Java stream; 
the second stream is a Java stream 

the method farther comprises the step of connecting the Java s 




32. (Amended) A computer data signal embodied in a carrier wave and 
representing sequences of instructions which, when executed by one or more processor 
provide communication protocol-independent security for d< 
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first node and a second node, by performing the steps of: 

establishing a communication channel between a first network node and a s 
network node; 

establishing a first stream from a first process to the communication channel after 
the establishment of the communication channel, wherein the first stream is encrypted 
after the first process and before entering the communication channel and the encrypted 
first stream is independent of any communication protocol layers; and 

establishing a second stream from the communication channel to a : 



process after the establishment of the communication channel, wherein the 



i is decrypted after the communication 



and before entering the second 



34. (Amended) The computer data signal of claim 32, v 
the first stream is a first Java stream; 
the second stream is a second Java stream; 

the step of establishing a communication channel between the first network node 
and second network node further comprises the step of establishing a Java secure 
ween the first network node and second network node; 
the step of establishing the first stream comprises the step of establishing the first 
Sream after the first process and before the Java secure channel; and 
the step of establishing a second stream comprises the step of establishing the 
a stream after the Java secure channel and before the second process. 
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35, Hie computer data signal of claim 32, wherein: 

the communication channel is a Java secure channel; 
the first stream is a Java stream; 
the second stream is a Java stream 

the method further comprises the step of connecting the Java secure channel to a 
third Java stream; and 

the third Java stream provides for the transmission of data according to a specific 
communication protocol layer. 
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Commissioner for Patents • 
P.O. Box 1450 
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STATUS INQUIRY 

According to our records, we have not received a communication from 
Office since the filing of an Appeal Brief on March 25, 2002. 

3 undersigned attorney respectfully requests 



In view of the 

that the Office advise him of the status of this application as soon as possible in order to 

determine whether further action by the applicant is required at this time. 
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FINNEGAN, HENDERSON, FARABOW, 
GARRETT & DUNNER, LLP. 
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IN THE LIMITED STATES PATENT AND TRADEMARK OFFICE 

In re Application of: ) 
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Application No.: 08/883,836 ) Examiner: Unknown 

Filed: June 26, 1997 ) 
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SECURITY FOR ) 

COMMUNICATION CHANNELS } 

Mail Step Petition 
Commissioner for Patents 
P.O. Box 1450 
Alexandria, VA 22313-1450 

Sir: 

PETITION REQUESTING WIT H DRAWAL O F . HO LDING O F A BANDONMENT. 

LETTER SUBMITTING DUPLICATE COPY OF FILE W RAPPER 
Applicant understands that the above-identified application has now become 
abandoned. The abandonment date of this application is unknown to Applicant, 
although Examiner Callahan stated in a telephone conference that this application was 
abandoned in June 2005. The Examiner also stated that the U.S. Patent Office never 
received Applicant's Appeal Brief filed March 25, 2002 and that the U.S. Patent and 
Trademark Office cannot locate its file wrapper for the above-identified application. 
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Applicant previously submitted to the U.S. Patent Office a Request for File 
Search on November 22, 2004. However, Applicant has not yet received a response to 
this Request. Applicant therefore assumes that the U.S. Patent Office lost this 
application and submits herewith a duplicate copy of the file wrapper in its entirety. 
Because the Appeal Brief fifed March 25, 2005, was timely filed, no abandonment in fact 
has occurred in this application, nor has Applicant received a Notice of Abandonment. 

Applicant submits concurrently herewith an Information Disclosure Statement for 
consideration by the Examiner once an Examiner is assigned to this application. 

If there are any other fees due In connection with the filing of this petition, 
including any fees required for an extension of time under 37 CFR § 1.136, such an 
extension is requested, and the Commissioner is authorized to charge any related fees 
to our Deposit Account No. 06-0918. 



Respectfully submitted, 



FINNEGAN, HENDERSON, FARABOW, 
GARRETT & DUNNER, LLP. 



Dated: November JL 2008 
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Commissioner for Patents 
P.O. Box 1450 
Alexandria, VA 2231 3-1 450 

Sir: 

INFORMATION DISCLOSURE STATEMENT UNDER 37 C.F.R. § 1-9JM 
Pursuant to 37 C.F.R. §§ 1 .58 and 1 .97(d), Applicant brings to the attention of 
the Examiner the documents on the attached listing. This Information Disclosure 
Statement is being filed after a Final Action and is accompanied by a fee of $180.00 as 
specified under § 1 .17(p). Applicant respectfully requests that the Examiner consider 
the listed documents and indicate that they were considered by making appropriate 
notations on the attached form. 

The document listed In this Information Disclosure Statement is a communication 
from the European Patent Office in a counterpart foreign application. This Information 
Disclosure Statement is not being filed within three months of the mailing date of that 
communication. However, Applicant understands that the U.S. Patent Office lost the 
above-referenced application. Applicant submits concurrently herewith a petition to 
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withdraw holding of abandonment and duplicate file wrapper. In view of the foregoing 
circumstances, Applicant respectfully requests consideration of this Information 
Disclosure Statement once an Examiner is assigned to the reconstructed application, 

A copy of the listed foreign document is attached. .Applicant respectfully requests 
that the Examiner consider the listed document and indicate that it was considered by 
making appropriate notations on the attached form. 

This submission does not represent that a search has been made or that no 
better art exists and does not constitute an admission that each or all of the listed 
documents are material or constitute "prior art.'' If the Examiner applies the document 
as prior art against any claims in the application and Applicant determines that the cited 
document does not constitute "prior art" under United States law, applicant reserves 
the right to present to the office the relevant facts and law regarding the appropriate 
status of such document 

Applicant further reserves the right to take appropriate action to establish the 
patentability of the disclosed invention over the listed document, the document be 
applied against the claims of the present application. 

\1 there is any fee due in connection with the filing of this Statement, please 
charge the fee to our Deposit Account No. 06-0916, 



Respectfully submitted, 



FINNEGAN, HENDERSON, FARABOW, 
GARRETT & DUNNER, LLP. 



Dated: November 3 , 2006 
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